Static task
static1
Behavioral task
behavioral1
Sample
cde5825f111d750e913e9ddd715d23de3dd32882084f2076a32f7b19fdc38f64.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
cde5825f111d750e913e9ddd715d23de3dd32882084f2076a32f7b19fdc38f64.exe
Resource
win10v2004-20221111-en
General
-
Target
cde5825f111d750e913e9ddd715d23de3dd32882084f2076a32f7b19fdc38f64
-
Size
47KB
-
MD5
ff8ffe5adf17dd0a10eddde3fbfb11e1
-
SHA1
bf4a38324daf6646a606f5c3f67dc51236101612
-
SHA256
cde5825f111d750e913e9ddd715d23de3dd32882084f2076a32f7b19fdc38f64
-
SHA512
94e8d5e498360f8c076024ef1751fb618d4c62a5e2c6f489e99864f15342b273e857e81506170f5c60aad101e400fd2030db81da5321c881152c349dd43c6562
-
SSDEEP
768:ovivl59boSKaFsvuvcTQZpIcNBId2w9+RVKzbbR3SKRgn0:oKt59bopasvOlEd2K+RVKzbbZSK2
Malware Config
Signatures
Files
-
cde5825f111d750e913e9ddd715d23de3dd32882084f2076a32f7b19fdc38f64.exe windows x86
cd408eaf7e02409406609f0c461a0839
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetTimeFormatW
GlobalLock
GlobalUnlock
GlobalAlloc
GetDateFormatW
GetModuleHandleA
lstrcatA
GetWindowsDirectoryA
GetLocalTime
GetUserDefaultUILanguage
HeapFree
GetCurrentProcessId
FoldStringW
lstrcmpW
FindFirstFileW
FindClose
HeapSetInformation
TerminateProcess
GetSystemTimeAsFileTime
GetStartupInfoA
GetCurrentThreadId
advapi32
RegQueryValueExA
RegSetValueExW
RegQueryValueExW
RegCloseKey
RegCreateKeyW
RegOpenKeyExW
IsTextUnicode
CloseServiceHandle
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
RegOpenKeyExA
Sections
.rdata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 39KB - Virtual size: 39KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 562B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ