Static task
static1
Behavioral task
behavioral1
Sample
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.exe
Resource
win10v2004-20230220-en
General
-
Target
1eee890ebe5e8b5d03a2fae63f791141.bin
-
Size
783KB
-
MD5
08ab6de5c4da841b8c9edb2c752cf6a4
-
SHA1
49edcbc6b26a9b284196e95b3fbb78d28358bd44
-
SHA256
0f85a9bf69c4316be205cb2ddef6366b7e36481b9849b5a6dede994474a1f134
-
SHA512
c68527fa22393e229bf237116c3b7bca2e84b537915a8f5f992db56722c8c3f3c41b572af03bbe890ba8708238be58cf0ec16bf7f8756198d68ae633ad4857ad
-
SSDEEP
24576:l0M6r4R5rqixjw355ZTrTQKw812KQxDYjK0wl3u:HR59xjU55Zcd91YjKjl3u
Malware Config
Signatures
Files
-
1eee890ebe5e8b5d03a2fae63f791141.bin.zip
Password: infected
-
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.exe.exe windows x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 923KB - Virtual size: 923KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ