61ab284b33d34fedb4725c0c3e5e1a2a4a3cc3767f29b10b87dd8598bfda2471 | Triage

Submit
Reports

Overview

overview

1

Static

static

61ab284b33...71.exe

windows7-x64

1

61ab284b33...71.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

61ab284b33d34fedb4725c0c3e5e1a2a4a3cc3767f29b10b87dd8598bfda2471.exe

Resource

win7-20220715-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

61ab284b33d34fedb4725c0c3e5e1a2a4a3cc3767f29b10b87dd8598bfda2471.exe

Resource

win10v2004-20220722-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

61ab284b33d34fedb4725c0c3e5e1a2a4a3cc3767f29b10b87dd8598bfda2471
Size

657KB
MD5

85875718160f86a6b2a50befab250f43
SHA1

3743bf1138e546adfd70e81a125d3b10d5a14897
SHA256

61ab284b33d34fedb4725c0c3e5e1a2a4a3cc3767f29b10b87dd8598bfda2471
SHA512

7c0b828fa64b95164545e1035acc9f4db541e529358f77d1483d76e1caa2ec2b25a41fd54b7a1334cfef05a4744737a56c473e6cc89837d86d6540fa0acb1275
SSDEEP

12288:y5mBb/CjMdS0BiTC/ZG/nrDcAPMN+t24aR3WQw7WFvAV5Y:y5mBmg8iGoG/rDcxs2lRQ7WFvAL

Score

N/A

Malware Config

Signatures

Files

61ab284b33d34fedb4725c0c3e5e1a2a4a3cc3767f29b10b87dd8598bfda2471
.exe windows x86

e7e07b93fdc69b81173827f60d465a09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSaveKeyW
RegRestoreKeyA
RegEnumKeyA
RegCreateKeyExA
RegReplaceKeyA
ReadEventLogW
RegUnLoadKeyA
LogonUserA
CryptSignHashA
ClearEventLogA
OpenEventLogW
RegOpenKeyA
RegDeleteValueW

shell32

SHGetFileInfoA
DragFinish
SHGetMalloc
ExtractIconW
ShellMessageBoxW
FindExecutableA
StrStrA
SHChangeNotify
DragQueryFileW
ShellAboutW
SHGetFolderPathA

shlwapi

UrlIsW
UrlCompareW
PathIsURLW
PathCommonPrefixW
UrlIsOpaqueW
UrlHashW
UrlIsNoHistoryW
PathCompactPathW
UrlGetPartW
PathCombineW
UrlGetLocationW
UrlEscapeW
UrlUnescapeA
PathStripPathA

untfs

Recover
Extend

cryptdll

CDLocateRng
MD5Init
MD5Update

kernel32

DeleteFileA
LoadLibraryA
GetProcAddress
GetCurrentProcess
GetCommandLineA
WaitForSingleObject
CreateWaitableTimerA
OpenEventW
WaitNamedPipeW
InterlockedIncrement
GetTickCount
OpenMutexA
FindNextFileA
MoveFileExW
LoadLibraryExW

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 566KB - Virtual size: 566KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy