Static task
static1
Behavioral task
behavioral1
Sample
ConfigCrc.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
ConfigCrc.exe
Resource
win10v2004-20230220-en
General
-
Target
ConfigCrc.exe
-
Size
8KB
-
MD5
4d20a0fba44f3e9fdd1a709087bbbec1
-
SHA1
7d5028f6aadd32f79601673e210e101ef5f943e8
-
SHA256
64eadc658293d53050723e1061e954c89a4c29ae2a7b924aedb9b2ba25fe50bd
-
SHA512
925f4520830ae4002c260d087621d18640d04902e1bc247be5134be9994ced16373ab909f1d54950ea118ce122729192f3c0b8332a575cadde26bba397893542
-
SSDEEP
192:SjGWiqFiAiRksDeJ4V95yFvxZ7z9rGBg5XOGxDVyKuE4FAf:SaWi03J4s5bf0GxDkW
Malware Config
Signatures
Files
-
ConfigCrc.exe.zip
-
ConfigCrc.exe.exe windows x86
468066ee1e813b9fa4362ec2c5a550d3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
AddAtomA
ExitProcess
FindAtomA
GetAtomNameA
GetFileAttributesA
GetLastError
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
VirtualProtect
VirtualQuery
msvcrt
_stat
__getmainargs
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_errno
_findclose
_findfirst
_findnext
_fullpath
_iob
_isctype
_onexit
_pctype
_setmode
abort
atexit
fclose
fgetc
fopen
fprintf
fputc
free
malloc
memcpy
printf
puts
remove
rename
signal
strcat
strcmp
strcpy
strlen
strrchr
ungetc
Sections
.text Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 128KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
checksums.txt