Static task
static1
Behavioral task
behavioral1
Sample
df16c889e128e3c308328af7cfb8f888d1fd4cdd26de73fcf97491352c43813a.exe
Resource
win7-20220812-en
General
-
Target
df16c889e128e3c308328af7cfb8f888d1fd4cdd26de73fcf97491352c43813a
-
Size
532KB
-
MD5
41460312beebf82c6ec41c66668fe8ca
-
SHA1
63824b88debe7f4109d0c51a788ed11dfa913b6c
-
SHA256
df16c889e128e3c308328af7cfb8f888d1fd4cdd26de73fcf97491352c43813a
-
SHA512
01181f26740ee6734e4aeba825ae3e1cef499d61dd8c48ab8a09fbfa257701e91e08cbe057dff3c44940abd105cc14a9d50ec4d85c12a6012b4c30a875586ba5
-
SSDEEP
6144:jas0n38fUMxMcnuBhP8fUMxMcnuBhP8fUMxMcnuBhP8fUMxMcnuBhPXukmxJUEMz:25duAE+P9OJBQ3IPmd5t3W7K
Malware Config
Signatures
Files
-
df16c889e128e3c308328af7cfb8f888d1fd4cdd26de73fcf97491352c43813a.exe windows x86
3979f2adf38ea7e869858887a40350e4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
ord582
ord585
ord693
ord586
ord589
ord697
MethCallEngine
ord513
ord517
ord518
ord519
ord628
ord629
ord552
ord660
ord553
ord662
ord557
ord665
ord668
ord669
ord591
ord592
ord593
ord594
ord702
ord520
ord522
EVENT_SINK_AddRef
ord527
ord528
ord560
ord562
DllFunctionCall
ord670
ord672
ord673
ord674
ord675
ord677
ord678
EVENT_SINK_Release
ord679
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord710
ord711
ord606
ord713
ord607
ord714
ord609
ord534
ord641
ord535
ord537
ord538
ord539
ord572
ord680
ord682
ord575
ord685
ord100
ord687
ord610
ord612
ord615
ord616
ord618
ord540
ord542
ord544
ord652
ord545
ord546
Sections
.text Size: 520KB - Virtual size: 518KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ