Static task
static1
Behavioral task
behavioral1
Sample
5e949730956708626bb6db283bf7962841aa18848b79a951e84bd29070bddd3f.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
5e949730956708626bb6db283bf7962841aa18848b79a951e84bd29070bddd3f.exe
Resource
win10v2004-20230220-en
General
-
Target
218b58b3b3584f95a9a7e26f323dd6a1.bin
-
Size
507KB
-
MD5
1dbd48b36e33d4105100993a65b0ebd8
-
SHA1
6883dd48d7951175e9cdb12eded29d885a804c96
-
SHA256
741c9e2adc67578197bcc3a308a6d41bdfb5caa29e46bef07fe73697234b9d1f
-
SHA512
1a76c8891718870fd715786e64ae486d449c0f154d168062c68c20ded6b766336f86f712c2f782a589cc1a06457a0be79a709c753daae50dcfeb07132b621ef8
-
SSDEEP
12288:8oluXOS2GUlCiFIy1mKvrx7Ia9Fv3QEZwrvc9ka53+:6XOTTCGj7I63CO3+
Malware Config
Signatures
Files
-
218b58b3b3584f95a9a7e26f323dd6a1.bin.zip
Password: infected
-
5e949730956708626bb6db283bf7962841aa18848b79a951e84bd29070bddd3f.exe.exe windows x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 577KB - Virtual size: 576KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ