123a5fd056af259f61651556412318f30af49d435a442acc4c79def21aa172ea | Triage

Submit
Reports

Overview

overview

Static

static

123a5fd056...ea.exe

windows7_x64

123a5fd056...ea.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

123a5fd056af259f61651556412318f30af49d435a442acc4c79def21aa172ea.exe

Resource

win7-20220414-en

dharma evasion persistence ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

123a5fd056af259f61651556412318f30af49d435a442acc4c79def21aa172ea.exe

Resource

win10v2004-20220414-en

dharma evasion persistence ransomware

windows10-2004_x64

0 signatures

0 seconds

General

Target

123a5fd056af259f61651556412318f30af49d435a442acc4c79def21aa172ea
Size

3.7MB
MD5

f5adcc295d58d72e8a3dc5068b89241b
SHA1

a8420f69ae8b8cf95fafe56d4c16b9f01e83e741
SHA256

123a5fd056af259f61651556412318f30af49d435a442acc4c79def21aa172ea
SHA512

fc4256f79c4c637bd8d0e0eee245ee9a6b789b173314db9f7fc5352e068357cd8fda1f5638af9d0467c3b8f380e8536d9996dc86c74ea84d3703928d4968a651
SSDEEP

98304:6qi9Kwv/Z8EMpdnO98TGF/EOJ5TKJiQ+7Ez9uCVBlfTbazu11R:zi9K2R8EeB1bG5TK8u9uDzg

Score

N/A

Malware Config

Signatures

Files

123a5fd056af259f61651556412318f30af49d435a442acc4c79def21aa172ea
.exe windows x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 371KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 173KB - Virtual size: 218KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ldybuqcg
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hvgwvfrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy