Static task
static1
Behavioral task
behavioral1
Sample
45cc01fdc1ac42e35b53ad90afe2c87fb168fafe0e744239b2d81f5638eb53f6.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
45cc01fdc1ac42e35b53ad90afe2c87fb168fafe0e744239b2d81f5638eb53f6.exe
Resource
win10v2004-20220812-en
General
-
Target
45cc01fdc1ac42e35b53ad90afe2c87fb168fafe0e744239b2d81f5638eb53f6
-
Size
52KB
-
MD5
7ca844ce3df71df241cbe0a1d1741b08
-
SHA1
48bb0bcabec2d0502d41857d99875ea711082435
-
SHA256
45cc01fdc1ac42e35b53ad90afe2c87fb168fafe0e744239b2d81f5638eb53f6
-
SHA512
4f891b68de7242d56320d1cfd00ed7f61a536f86f118a0f4c9ac1be0a1ce45f3c4d35e4930c59bcfcbfebc5068c8c47a9d000a6a665a10d48e8fcc7c743fc1b3
-
SSDEEP
768:XEWk+HhX6weeznJVvpvpM00ZdQh0UTWHUi7rVQwJuKWKZ2P/e:bkerdvpMpQhxTW0Qr3Ju3KKW
Malware Config
Signatures
Files
-
45cc01fdc1ac42e35b53ad90afe2c87fb168fafe0e744239b2d81f5638eb53f6.exe windows x86
e412b84f9872e581010535b42dbd0f1a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetProcAddress
ReadProcessMemory
ReadFile
GetCurrentProcess
GetVersion
CreateFileA
LocalFree
CloseHandle
FormatMessageA
GetModuleHandleA
OpenProcess
HeapReAlloc
WideCharToMultiByte
GetEnvironmentStrings
CompareStringW
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
GetCommandLineA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetLastError
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
CompareStringA
SetEnvironmentVariableA
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
RtlUnwind
WriteFile
GetTimeZoneInformation
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
FlushFileBuffers
SetFilePointer
LCMapStringA
LCMapStringW
SetStdHandle
version
GetFileVersionInfoA
GetFileVersionInfoSizeA
advapi32
LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken
imagehlp
ImageNtHeader
Sections
.text Size: 32KB - Virtual size: 31KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 968B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ