Static task
static1
Behavioral task
behavioral1
Sample
559ca1569eacb5dfb33b941b21bb2e6c.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
559ca1569eacb5dfb33b941b21bb2e6c.exe
Resource
win10v2004-20231215-en
General
-
Target
559ca1569eacb5dfb33b941b21bb2e6c
-
Size
20KB
-
MD5
559ca1569eacb5dfb33b941b21bb2e6c
-
SHA1
ac2c01a4122a57b91fa06120b364f5bea48744bf
-
SHA256
95396c6cb381656875d5fef24e7f3f623c5f866b7b76a1bf64eaae6a69160927
-
SHA512
0cfdceb8409d8314632fbe618f1dd613dd87ec5c3339d192ca6de531e4ae032c10c9a59e49147c095fba78b2a1e80d89c7b3150a72a40dcf96e8363e4350b126
-
SSDEEP
384:9gVRAoBr23B6kRUjYqARNnQl0RigXtAS8my:ONuRUjzQNnQuiuS+
Malware Config
Signatures
Files
-
559ca1569eacb5dfb33b941b21bb2e6c.exe windows:4 windows x86 arch:x86
41ebb9d0daa0266fd3bf1eb024720ce8
Code Sign
44:01:af:44:5b:fa:74:79:b2:30:a8:13:7b:9e:30:90Certificate
IssuerCN=QeaajoqeNot Before01/03/2012, 10:56Not After31/12/2039, 23:59SubjectCN=Qeaajoqe48:45:5b:94:bf:73:23:27:2a:73:64:59:ca:e4:80:64:16:26:44:14Signer
Actual PE Digest48:45:5b:94:bf:73:23:27:2a:73:64:59:ca:e4:80:64:16:26:44:14Digest Algorithmsha1PE Digest MatchestrueHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
ExitProcess
Sleep
user32
RegisterClassExA
ShowWindow
UpdateWindow
GetMessageA
EndPaint
DispatchMessageA
PostQuitMessage
gdi32
GetObjectA
Sections
.text Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 494B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 256B - Virtual size: 115B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 256B - Virtual size: 238B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ