Static task
static1
Behavioral task
behavioral1
Sample
19fe15b11d149ee8843be401144dcfa10d776aedfaf305bc71c00608bc87a053.exe
Resource
win7-20220901-en
General
-
Target
4a64ffc1edc8fe478ed92689fe5c15c7.bin
-
Size
1.3MB
-
MD5
1e9689449803fe90d763f346a0d3eeb7
-
SHA1
bcb677a569b085e1c7182a3d74101f22b9381840
-
SHA256
abe2ca70ef02e86117d09691f330e8c806219813c2b2a061b52860b1ded36ef3
-
SHA512
24e52ab1ed419ef1c495271ebd638a4cffc31de2cb129d546860a34934f4f723bd8da0d4b0d4fc93a4e02eb37e0953913f0053526e9ac4bb1f920f1bb718302a
-
SSDEEP
24576:owgwUjp3j+At/V3fJP7J1D+5+QusjzVPtkUj3s18JQFnzx0NlsahoMJx6Mm0vqp8:o9wYiAnfJP9d+cruNaq3s2CFSlsahDJ/
Malware Config
Signatures
Files
-
4a64ffc1edc8fe478ed92689fe5c15c7.bin.zip
Password: infected
-
19fe15b11d149ee8843be401144dcfa10d776aedfaf305bc71c00608bc87a053.exe.exe windows x64
Password: infected
945ccf22cc41932b3f3ccf14fa07ede6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
shell32
ShellAboutA
mscoree
_CorExeMain
advapi32
RegQueryValueA
user32
EndPaint
kernel32
GetModuleHandleA
Sections
.text Size: - Virtual size: 891KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE