Static task
static1
Behavioral task
behavioral1
Sample
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.exe
Resource
win10v2004-20230220-en
General
-
Target
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.zip
-
Size
783KB
-
MD5
d72ba0bc4ce3ce9e638a5bde74af9d09
-
SHA1
d4f6c8b372a4294e7de69641ae512fb17a073e1d
-
SHA256
2eeb9a4eff9a43800d1ece8e373a6cab2bbe14a97bd2655f7e340f73d7fcf68d
-
SHA512
016aa8c6328af857e0efc7b3edba1cef162a71e40f3d9ab85f168667a79c298bfb0b022a15eb4e62ea7ce617dfeaa1bc1ff7d5d262ae6f0bbc62f432b96c7c0a
-
SSDEEP
24576:w/xfJtS3fOBIIiZo4HzzaD6ZwJlgJqobk:w/NJoWSICo+zl6p
Malware Config
Signatures
Files
-
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.zip.zip
Password: infected
-
ad3a4db849a64ea07922d63153d3381798b4450f28d8db82c95393a5f6aaa569.exe.exe windows x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 923KB - Virtual size: 923KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ