tcgkep
Static task
static1
Behavioral task
behavioral1
Sample
891baa8a7ad571286d2c1fd38cd8b72e46bb8909324550abd3a8878fb44fa4a7.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
891baa8a7ad571286d2c1fd38cd8b72e46bb8909324550abd3a8878fb44fa4a7.dll
Resource
win10v2004-20221111-en
General
-
Target
891baa8a7ad571286d2c1fd38cd8b72e46bb8909324550abd3a8878fb44fa4a7
-
Size
825KB
-
MD5
0d69d85725b142f5677bf1df33838c30
-
SHA1
77db88e32fde1d3641d102510aaf687bbfca8dab
-
SHA256
891baa8a7ad571286d2c1fd38cd8b72e46bb8909324550abd3a8878fb44fa4a7
-
SHA512
fe455de2ef8dcef55121ce11d8051f48f61698a500ef520805d441a3e0ba8f7089a9ca8de745a57fca43c10ef134b2e13958a5510fa0303393e949be184ed3dc
-
SSDEEP
24576:mbFr/akxYA8xHggD6F4SPLzmY7X3JWWWVDjx8Y:mbFrysYy2SH37pWWWjxb
Malware Config
Signatures
Files
-
891baa8a7ad571286d2c1fd38cd8b72e46bb8909324550abd3a8878fb44fa4a7.dll windows x86
baa93d47220682c04d92f7797d9224ce
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
lstrcpy
comctl32
InitCommonControls
Exports
Exports
Sections
Size: 110KB - Virtual size: 212KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 936KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
udkdamab Size: 707KB - Virtual size: 708KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
uearqgyu Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE