Static task
static1
Behavioral task
behavioral1
Sample
2423440c08ec7e4919afb68e21311e9c5853f129c0f05071d0163fc7031754a8.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
2423440c08ec7e4919afb68e21311e9c5853f129c0f05071d0163fc7031754a8.exe
Resource
win10v2004-20230220-en
General
-
Target
9384051614.zip
-
Size
13.9MB
-
MD5
19c05a4d436c92ba01009cff81028540
-
SHA1
d85e839b7fe301ba0d6b51fad32905b984ac3243
-
SHA256
e4cd089e1b0b2f8d2ea0357a699238ba38a3951e93f5d6284f7768fae934548b
-
SHA512
d66ef5af69a297098392e78feb22404d05402d62cb615bc6f4eb3bb3d7225534ee883a38b6d45b64c418cfffd008462d811de99f8d1bea7cb74221fc0dcc7ac3
-
SSDEEP
393216:7z88knorVOPJgQidbUe6/8D4mXHJhRL87RQoXpTiAFU:7m8oiH6/8DrRADXpTi
Malware Config
Signatures
Files
-
9384051614.zip.zip
Password: infected
-
2423440c08ec7e4919afb68e21311e9c5853f129c0f05071d0163fc7031754a8.exe windows x86
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 37KB - Virtual size: 36KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 1024B - Virtual size: 588B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 3KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 8B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 21KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ