Static task
static1
General
-
Target
Activate.exe
-
Size
1.8MB
-
MD5
c5712d3db2ba35520bd6bc11cb6ed667
-
SHA1
d7854f2ed09a15db78c7219f4ad90b88b7118862
-
SHA256
a3b8494ee6dba13076ab3d91dd89ee5df50ac2d04b01ccdd68ce923d03ff3a5b
-
SHA512
9f9009b07f03acc7cba7c9d27a8233f695aeb1b256037f022ab8d188656384830481684eb54f20ddcf6b13eaf58fea272fc06893742597464d2f0e0941d9998b
-
SSDEEP
49152:NVd9ZyRJz6kbX/f4ajYnE0n9p7x6IbrvL:NVd9kR004nf9p7x6IbrvL
Malware Config
Signatures
Files
-
Activate.exe.exe windows x64
f459431e7a1e887c3cd0a04e53dacad8
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
user32
GetDC
gdi32
SaveDC
comdlg32
GetOpenFileNameW
shell32
SHGetMalloc
ole32
OleCreate
oleaut32
SafeArrayDestroy
msvcp140
?_Xlength_error@std@@YAXPEBD@Z
wininet
FtpOpenFileW
ws2_32
getsockopt
version
VerQueryValueW
shlwapi
PathStripToRootW
winmm
timeGetTime
imm32
ImmNotifyIME
opengl32
glClear
vcruntime140
memset
api-ms-win-crt-heap-l1-1-0
free
api-ms-win-crt-string-l1-1-0
strcmp
api-ms-win-crt-runtime-l1-1-0
exit
api-ms-win-crt-stdio-l1-1-0
fseek
api-ms-win-crt-convert-l1-1-0
atoi
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-math-l1-1-0
log
api-ms-win-crt-time-l1-1-0
wcsftime
api-ms-win-crt-locale-l1-1-0
_create_locale
api-ms-win-crt-environment-l1-1-0
getenv
Sections
.MPRESS1 Size: 1.7MB - Virtual size: 5.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 80KB - Virtual size: 79KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE