Static task
static1
Behavioral task
behavioral1
Sample
kellyzx.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
kellyzx.exe
Resource
win10v2004-20220812-en
General
-
Target
kellyzx.exe
-
Size
747KB
-
MD5
2d9d9dc24b22cccd2ca8ca4d2975115d
-
SHA1
1fc2da1c1c87af9637bfb4858fee4037cd5e60ab
-
SHA256
0b31e3396946781f4215290726981f96511ebc2d286a56d911e102ee7145c6ee
-
SHA512
45dbd9b90f8a7bf0df6b729b64d8720f49f8b28aa57a022d8b4207442bbbcf2f1a591b5223949fec8b50888fc349374d8c899b94ae8ca1c4269966590f5d3692
-
SSDEEP
12288:ehefaqG4yPaj5XwBtP3NjHetuoOqFyq6Fy2Mxzo3:geSqG4yPatXwBtP3N4qY6F0xM
Malware Config
Signatures
Files
-
kellyzx.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 745KB - Virtual size: 745KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 900B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ