Static task
static1
Behavioral task
behavioral1
Sample
5a22ed7de04bca6776916b96885d5ce6d50fc427d11a52e758cf7cdb8ab94ba1.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5a22ed7de04bca6776916b96885d5ce6d50fc427d11a52e758cf7cdb8ab94ba1.exe
Resource
win10v2004-20221111-en
General
-
Target
5a22ed7de04bca6776916b96885d5ce6d50fc427d11a52e758cf7cdb8ab94ba1
-
Size
970KB
-
MD5
3bf78f0de44b6119fff9149d4ef17cb0
-
SHA1
7ef71c6e1b4b043f25921a64e0d458ac85334c2f
-
SHA256
5a22ed7de04bca6776916b96885d5ce6d50fc427d11a52e758cf7cdb8ab94ba1
-
SHA512
b974f9361056b58d799edeed3f3c8a9ca39d1287c3ba1751445607489ab1dc0f0ef1dffc626566523612200a08d2daeee9db97fb0b9b1b32c374ba112686ed56
-
SSDEEP
12288:G4RYPF0otK38ZJhQS8FxM28eRLq33edUaJ/ySbMkxrrGJAKEifR3LIhPxdspOsa4:RcvcNRJr1KVF8CpzcYodV198j
Malware Config
Signatures
Files
-
5a22ed7de04bca6776916b96885d5ce6d50fc427d11a52e758cf7cdb8ab94ba1.exe windows x86
48209dd725cce81c1bddabea443db71a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ole32
CoInitialize
CoTaskMemFree
CLSIDFromString
CoCreateInstance
StringFromCLSID
StringFromIID
CoUninitialize
kernel32
GetACP
EndUpdateResourceW
GetSystemDirectoryA
InterlockedExchange
InterlockedCompareExchange
GetLocaleInfoA
GetModuleHandleA
GetThreadLocale
GlobalFree
FindClose
GetOEMCP
FreeResource
FindNextFileW
LoadLibraryExA
GetVersionExW
GetEnvironmentVariableA
LoadLibraryExW
BeginUpdateResourceW
CloseHandle
GlobalAlloc
FreeLibrary
UpdateResourceW
GetFileInformationByHandle
WideCharToMultiByte
SetFilePointer
RaiseException
LocalFree
ExitProcess
GetFullPathNameW
GetVersion
ReadFile
user32
wsprintfW
CharNextA
CharNextW
msvfw32
DrawDibProfileDisplay
ICRemove
imagehlp
ImageNtHeader
ImageRvaToVa
ImageDirectoryEntryToData
ImageGetDigestStream
Sections
.text Size: 566KB - Virtual size: 565KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 364KB - Virtual size: 364KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 37KB - Virtual size: 3.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ