Static task
static1
Behavioral task
behavioral1
Sample
924b13e4fefe20d456b9d6b602d4fd9a1f20baf806919d6e97b6994bfed72912.exe
Resource
win7-20230220-en
General
-
Target
1e7fa16e39d299172ecf8763b163e90c.bin
-
Size
3.0MB
-
MD5
c172b939769fbd2bdce4162a815a12be
-
SHA1
31dc8451058b7652fd3a0165993013b02c45f58a
-
SHA256
c622a47b173d981dc4f59243af259618782d4a52627318516b5747d8ee223c0c
-
SHA512
de4d6cf40d2f644714cebfa90413a36a535a18aeb1e77ca0ba1055088ffdbeb6f4f68a0600896c23f8b094fe47d9212866a405f3377667990c44edc096d2f31d
-
SSDEEP
49152:jn89A6o9B8Ia9GLefO95WkBCPnLIRjnLSdokNfIShZiCYt0bF4yWwvzQkA:jnJ8IGTmXiuLcjISh850J4yWw0
Malware Config
Signatures
Files
-
1e7fa16e39d299172ecf8763b163e90c.bin.zip
Password: infected
-
924b13e4fefe20d456b9d6b602d4fd9a1f20baf806919d6e97b6994bfed72912.exe.exe windows x86
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 36KB - Virtual size: 35KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 1024B - Virtual size: 584B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 3KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 8B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ