043990c482d023befba83039e6854a30f0baae01ae83db9f8559119c6db2321d | Triage

Submit
Reports

Overview

overview

Static

static

043990c482...1d.exe

windows7_x64

043990c482...1d.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

043990c482d023befba83039e6854a30f0baae01ae83db9f8559119c6db2321d.exe

Resource

win7-20220414-en

dharma persistence ransomware spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

043990c482d023befba83039e6854a30f0baae01ae83db9f8559119c6db2321d.exe

Resource

win10v2004-20220414-en

dharma persistence ransomware spyware stealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

043990c482d023befba83039e6854a30f0baae01ae83db9f8559119c6db2321d
Size

92KB
MD5

6a98716bbb12c3c947710eaeabc1a1b3
SHA1

7d7829776ccebdf698012f548ee020483db3fa75
SHA256

043990c482d023befba83039e6854a30f0baae01ae83db9f8559119c6db2321d
SHA512

376150c7fe2c72dc0647ece913fe6cbbabe83ff7397e7c926833d7799fd6cdb1e4bf5b9de4cd32d79ddcb03c3f8e4da7e9cfe6d6ad5afa6eedb632c1578d1892
SSDEEP

1536:mBwl+KXpsqN5vlwWYyhY9S4AHfsT2f0p94ozoEC9NDAH73plDneA:Qw+asqN5aW/hLZsTS3ozon9evDeA

Score

N/A

Malware Config

Signatures

Files

043990c482d023befba83039e6854a30f0baae01ae83db9f8559119c6db2321d
.exe windows x86

f86dec4a80961955a89e7ed62046cc0e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
WaitForSingleObject
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
GetLastError
EnterCriticalSection
ReleaseMutex
CloseHandle

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy