Static task
static1
Behavioral task
behavioral1
Sample
Device/HarddiskVolume10/Customer.Data/207186-Wolfsgruber/MirrorData/Artikel/test/artikel/TestShortcutLocation.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
Device/HarddiskVolume10/Customer.Data/207186-Wolfsgruber/MirrorData/Artikel/test/artikel/TestShortcutLocation.exe
Resource
win10v2004-20230220-en
General
-
Target
TestShortcutLocation.exe
-
Size
15KB
-
MD5
395fe7d132eacd134b44258b477a9284
-
SHA1
6831635331a11d0a603695c60b1f7c4831fcc703
-
SHA256
583e3acb878ab6b65790c942034142fcbb6c0c06d1f983f2f0999ef50b32218a
-
SHA512
33898d7f4d8e047708e32d2e3c551dea6f4d577b85eddbd7b29b0efd57769e0802a28843dd8534ce06c904fa503ac4145a23cba9fd4dd0cfd927cfcc22d5199e
-
SSDEEP
384:Nkkx+FVbB6dygvANrsdgoqoOE61ERTjbuLlC94PRkfbcOX/Yf:NkjVbBYvAudnqoONERTn44QCDcOX/m
Malware Config
Signatures
Files
-
TestShortcutLocation.exe.zip
Password: ow&b!54X6x_#4gT@9BT4
-
Device/HarddiskVolume10/Customer.Data/207186-Wolfsgruber/MirrorData/Artikel/test/artikel/TestShortcutLocation.exe.exe windows x86
Password: ow&b!54X6x_#4gT@9BT4
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
manifest.json