Static task
static1
Behavioral task
behavioral1
Sample
bdb929a74b281c3a5ded5bf9d3c6856ab9a1c24379a9d73fc045c19b6b846056.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
bdb929a74b281c3a5ded5bf9d3c6856ab9a1c24379a9d73fc045c19b6b846056.exe
Resource
win10v2004-20220812-en
General
-
Target
bdb929a74b281c3a5ded5bf9d3c6856ab9a1c24379a9d73fc045c19b6b846056
-
Size
393KB
-
MD5
a529a453ba297b7e360dc459bbc1a3bc
-
SHA1
bbcfbf4f9d02f2247e474954495fab8805e56584
-
SHA256
bdb929a74b281c3a5ded5bf9d3c6856ab9a1c24379a9d73fc045c19b6b846056
-
SHA512
5866a0cd0620cf2dbcf0c99021c4b5d6ec77722cb150db5cbab4bf06d8f36a6d9d9d73838c5e1708d9a7dade2ec3705ccbe8294397923b19589af3b531ca735e
-
SSDEEP
6144:2dFIgZohbyHhhaOpYWWdEAhhTXW2GhzNG5QvU2YEiWOAUVFyqadUPW:w6bExWG8TX/0c5Q82YEqAkmU
Malware Config
Signatures
Files
-
bdb929a74b281c3a5ded5bf9d3c6856ab9a1c24379a9d73fc045c19b6b846056.exe windows x86
f893e4a66f57ed109ab6e0622435d143
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
VirtualProtect
ReadConsoleW
GlobalFree
GetStdHandle
Sleep
CreateHardLinkW
GetFileAttributesA
CreateDirectoryW
CreateMutexW
GetLocalTime
DeleteFileW
GetStartupInfoA
GetTickCount
HeapSize
LoadLibraryA
GetProcessHeap
CreateSemaphoreA
GetPriorityClass
SetLastError
SetLastError
SetEvent
wintrust
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
traffic
TcAddFlow
TcAddFilter
TcDeleteFilter
TcDeleteFlow
Sections
.text Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 522B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 385KB - Virtual size: 924KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE