Static task
static1
Behavioral task
behavioral1
Sample
93da8bb6186b347cd8ab3978727e27221a780c2747209010c13e89f9fd0e6324.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
93da8bb6186b347cd8ab3978727e27221a780c2747209010c13e89f9fd0e6324.exe
Resource
win10v2004-20220812-en
General
-
Target
93da8bb6186b347cd8ab3978727e27221a780c2747209010c13e89f9fd0e6324
-
Size
1.3MB
-
MD5
eae48043a74a7ac509dcb70a8e77ee7b
-
SHA1
6d65fb0efac061a1ca37b568314a1832939ac2b3
-
SHA256
93da8bb6186b347cd8ab3978727e27221a780c2747209010c13e89f9fd0e6324
-
SHA512
f9286e8285329b0c5870fbb0ff78caf933e97049841f5919340e6eda3bd9ac35b8c7d90136fde86a63cf3dbebfaf11867ce56c37c379ec00fcd4945d34f1a7b2
-
SSDEEP
24576:2K+z1cU+50CESzkZ3iIWCODHj90C5mdjwnunAGCV:2fRl+50CEKe3iIW79Xl
Malware Config
Signatures
Files
-
93da8bb6186b347cd8ab3978727e27221a780c2747209010c13e89f9fd0e6324.exe windows x86
81cace61cc76ac5cbb621988707c0d94
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateProcessA
OpenFileMappingA
GlobalFree
DeleteFileW
CopyFileA
CreateThread
OpenFile
CopyFileExW
GetStdHandle
GetComputerNameA
ReadFile
DeleteAtom
SetLastError
DeleteFileA
FindAtomA
GetFileSize
CopyFileA
OpenFile
CreateProcessA
ExitThread
GetFileTime
CopyFileW
FindFirstFileA
WriteFile
GetCPInfo
ReadConsoleA
CopyFileExW
GetCommandLineA
CopyFileA
ExitThread
OpenFileMappingA
FindFirstFileA
CopyFileExA
GetFileTime
GetComputerNameA
GetCPInfo
ReadConsoleA
GetConsoleMode
CreateDirectoryA
GlobalFree
OpenFile
DeleteFileW
GetCommandLineA
ReadFile
CreateDirectoryA
SetLastError
FindAtomA
CopyFileExA
OpenFile
CopyFileExW
CopyFileW
CreateProcessA
ReadFile
WriteFile
GetComputerNameA
GetFileSize
DeleteAtom
DeleteFileW
OpenFileMappingA
Sections
.bbs Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.itext Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.edata Size: 24KB - Virtual size: 4.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: 4KB - Virtual size: 117B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 36KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ