Static task
static1
Behavioral task
behavioral1
Sample
cf2168940995549a47e170ff65e038af63a8217526c9dd292eed8f98957750bb.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
cf2168940995549a47e170ff65e038af63a8217526c9dd292eed8f98957750bb.exe
Resource
win10v2004-20230220-en
General
-
Target
0dc62cfaa97d8e6e5b4b31770c78f47f.bin
-
Size
1.1MB
-
MD5
33455741cc2f959c2afea47db971d97d
-
SHA1
2230b29b10499428ff0eb7dd51dc92ba83f3ac19
-
SHA256
037b979fdcd8a1c1b556841e302366ca9a5d567cbf2f9d6780cd4f9ce45bcbbb
-
SHA512
aae817b07862b771f1ad9381cb8a3d7fa50cf3c65706656c67c51086448bde5bb3a87a70345fce6751da8637b122d2997aebb5671bdb97d12591fa4d3681584c
-
SSDEEP
24576:zvh1WhaaEn012lewYipHG2BBRnCW7ZlKEVeEYmwqfe+g:zyaJ08ewYs37Gjr/H
Malware Config
Signatures
Files
-
0dc62cfaa97d8e6e5b4b31770c78f47f.bin.zip
Password: infected
-
cf2168940995549a47e170ff65e038af63a8217526c9dd292eed8f98957750bb.exe.exe windows x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ