Static task
static1
Behavioral task
behavioral1
Sample
2e8ec55e702aecc3ca3b2888ea2646048f6332618ab7f33e6330329a54c81ca9.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
2e8ec55e702aecc3ca3b2888ea2646048f6332618ab7f33e6330329a54c81ca9.exe
Resource
win10v2004-20220812-en
General
-
Target
2e8ec55e702aecc3ca3b2888ea2646048f6332618ab7f33e6330329a54c81ca9
-
Size
189KB
-
MD5
102935abba3ed52829dec29be48d57c2
-
SHA1
be6556131d6ca0644df34941e7f43a73b9216921
-
SHA256
2e8ec55e702aecc3ca3b2888ea2646048f6332618ab7f33e6330329a54c81ca9
-
SHA512
e800f13f88819ffc892f172dd1068aad0bf7dd9c18d8a3bd4c56037c9da9ae3d9a060ee06d405f2bb5774d536894cf744ead724c59120e2f96c3f7e1b6c5b757
-
SSDEEP
1536:i6jxdJ0RrFWqo8oIVn7ikEG0iTPCwygVBy4N5gP5UmgQMBGMsS:RjxIrFBo8l7CziTPvygnAUdoMs
Malware Config
Signatures
Files
-
2e8ec55e702aecc3ca3b2888ea2646048f6332618ab7f33e6330329a54c81ca9.exe windows x86
ea57d604f62b3bb258e0a9ce7c698d23
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
VirtualAlloc
VirtualFree
GetCurrentProcess
Sleep
ExitProcess
Sections
.text Size: 512B - Virtual size: 216B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Jogwe. N Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Autnnbqy Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Cawp, Bw Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 173B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 101KB - Virtual size: 101KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 84KB - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
iegvght Size: 4096.0MB - Virtual size: 4KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE