Static task
static1
Behavioral task
behavioral1
Sample
d4f6be2b386b1ded0cf214dd80e305916deefaa53d946f3dc049d8fdcda706a1.exe
Resource
win7-20230220-en
General
-
Target
1f8bb766c1400ea1efb742ee853f6db7.bin
-
Size
3.0MB
-
MD5
3bfa1faa0fb166a16c04ab46c626c037
-
SHA1
107ee5a6ddad7f6fcf981895e58e52d761be17ea
-
SHA256
154cfdb48e4206538c330b843fceaee74d8f76d81b42864f1735286cfb60ceb3
-
SHA512
03136fd5362396924f89a5522887e76834dffaa5fde04f58b5a7d95458491b5017d44de4bb364ed7822f1c6a8df48921a8e2b1f469c107c102e36d336d2edfc7
-
SSDEEP
49152:gMtgVcjmIKd+X9ZWk3SlqtJ+duaDZD/sXuhJaLk3A207z3Z/ivLCPf88FLlH:vtg2XUuZWsSlqt+uWZDr34BijCPf5FJH
Malware Config
Signatures
Files
-
1f8bb766c1400ea1efb742ee853f6db7.bin.zip
Password: infected
-
d4f6be2b386b1ded0cf214dd80e305916deefaa53d946f3dc049d8fdcda706a1.exe.exe windows x86
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 36KB - Virtual size: 35KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 1024B - Virtual size: 584B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 3KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 8B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ