Static task
static1
Behavioral task
behavioral1
Sample
f73d823313bd7218e8a3a00916ccbe3137e19ed4679a43a452663dcce1c799d9.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
f73d823313bd7218e8a3a00916ccbe3137e19ed4679a43a452663dcce1c799d9.exe
Resource
win10-20220812-en
General
-
Target
f73d823313bd7218e8a3a00916ccbe3137e19ed4679a43a452663dcce1c799d9
-
Size
6.2MB
-
MD5
9e59e36488bfcebe5acba259c6ba6195
-
SHA1
65ba9bfa1e66bf09b0d3064746c15246b9fcc049
-
SHA256
f73d823313bd7218e8a3a00916ccbe3137e19ed4679a43a452663dcce1c799d9
-
SHA512
f043684854247db8ead2823105942009ca8b8bb3d1d58b80d1ee851fb028afa7374bc29661c46f4e9ca6d5896dacd56a3c297161c3c71f5b4db2dbfd9f797ecd
-
SSDEEP
98304:FjWC/PP6KALpuDlnRoTsUzBPPPPTycfOsjaTA5Tny6dDFFMcubn36fBu:FyC/lALkD7oTJP+cfDaM57y6PNuO5u
Malware Config
Signatures
Files
-
f73d823313bd7218e8a3a00916ccbe3137e19ed4679a43a452663dcce1c799d9.exe windows x86
c13c8448da2c49003350482d87ee83ac
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateThread
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress
user32
MessageBoxW
CharUpperBuffW
vcruntime140
__current_exception
api-ms-win-crt-stdio-l1-1-0
__p__commode
api-ms-win-crt-math-l1-1-0
__setusermatherr
api-ms-win-crt-runtime-l1-1-0
_c_exit
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
api-ms-win-crt-heap-l1-1-0
_set_new_mode
Sections
.text Size: - Virtual size: 282KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 964B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: - Virtual size: 4B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.srf0 Size: - Virtual size: 3.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.srf1 Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.srf2 Size: 6.2MB - Virtual size: 6.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ