Static task
static1
Behavioral task
behavioral1
Sample
b20cd935421cd4cd45a193853144bf1432e8f861816687aee30ecce9e42a19f1.exe
Resource
win7-20220812-en
General
-
Target
b20cd935421cd4cd45a193853144bf1432e8f861816687aee30ecce9e42a19f1
-
Size
5.7MB
-
MD5
216bbaf75caf5bbb9ff3bf4e9c022a36
-
SHA1
f080f91bd0e96ebb28a5da981b4a2876ce9eccea
-
SHA256
b20cd935421cd4cd45a193853144bf1432e8f861816687aee30ecce9e42a19f1
-
SHA512
7c5c3670dfc4f84330df9ec382bf7b7ec8e2436d053d75afd25b6328aeddbe886c4d5eb7eb986ef86136171104ee3bb5334eeca0a44edf6d5de78e5296303831
-
SSDEEP
98304:PHbIvLebqBxxiTkNj0iJpZcPhlusOhxH97mVXzk28p/kw9fYSNaHUGaeEyc/UhU:vbIdxGkLvklusOhxd4zk209fYSNPGFcL
Malware Config
Signatures
Files
-
b20cd935421cd4cd45a193853144bf1432e8f861816687aee30ecce9e42a19f1.exe windows x86
0621e8c019dc6be57d313b9281743d20
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
DeleteFileW
ExitProcess
FreeLibrary
GetLastError
GetLocalTime
GetProcAddress
LoadLibraryW
Sleep
VirtualAlloc
VirtualFree
msvcrt
malloc
free
memcpy
Sections
.text Size: 5.6MB - Virtual size: 5.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 688B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 121KB - Virtual size: 121KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ