Static task
static1
Behavioral task
behavioral1
Sample
dd9e5c7feca5dcb70111b9fc62388226d59ef4cbee79ff5a9e7e0d138baaaa54.exe
Resource
win7-20221111-en
General
-
Target
dd9e5c7feca5dcb70111b9fc62388226d59ef4cbee79ff5a9e7e0d138baaaa54
-
Size
2.3MB
-
MD5
f030c0022efcca958dd71c3906951db3
-
SHA1
74fffbf32b55410dbf6869d093f775c819502d1b
-
SHA256
dd9e5c7feca5dcb70111b9fc62388226d59ef4cbee79ff5a9e7e0d138baaaa54
-
SHA512
dd1da71277a0ee27ccda0b4d947e99af805be44acc1ba86663dba82289a20b71bd76afc12895f24e95b7285b22dffda720a3c6714cfef6c5e650fe3d7527fe7d
-
SSDEEP
49152:93rDMUm0x6DO/LsuVFjrxltrorgQKBJwWAkM4PBQ9K:93rYUZxOO/LHnjlQkFbwWA945QA
Malware Config
Signatures
Files
-
dd9e5c7feca5dcb70111b9fc62388226d59ef4cbee79ff5a9e7e0d138baaaa54.exe windows x64
ccc7c721823e27bf7406ae1f7b17ab35
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
user32
wsprintfW
shell32
SHGetFolderPathA
advapi32
GetUserNameA
winhttp
WinHttpSetStatusCallback
msvcrt
memset
Sections
.MPRESS1 Size: 2.2MB - Virtual size: 5.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 132KB - Virtual size: 131KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE