7f72bb2eb4ea1f0914a9cb1de72d424efe2e183a7a78ef974a655914a9ce9790 | Triage

Submit
Reports

Overview

overview

5

Static

static

winprofile

windows7-x64

5

winprofile

windows10-1703-x64

5

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

7f72bb2eb4ea1f0914a9cb1de72d424efe2e183a7a78ef974a655914a9ce9790.exe

Resource

win7-20220901-en

windows7-x64

4 signatures

300 seconds

Behavioral task

behavioral2

Sample

7f72bb2eb4ea1f0914a9cb1de72d424efe2e183a7a78ef974a655914a9ce9790.exe

Resource

win10-20220812-en

windows10-1703-x64

3 signatures

300 seconds

General

Target

7f72bb2eb4ea1f0914a9cb1de72d424efe2e183a7a78ef974a655914a9ce9790
Size

6.5MB
MD5

a037f22807116f6b8353480b4898f642
SHA1

81c121d4b201faadc62ea29e1caa0e855abc6dc1
SHA256

7f72bb2eb4ea1f0914a9cb1de72d424efe2e183a7a78ef974a655914a9ce9790
SHA512

1b2e811b521fe0808da99ef556aed386d47c1556b6d7656c630e3080585465da16f445a3a28058986483da785544d849cdc7b6a39fe834143155a20ae7b436bb
SSDEEP

196608:O3oKkJpbmOREqZa30Kq++67O1bVrPphR5:Wo3QOREJqjvBPvH

Score

N/A

Malware Config

Signatures

Files

7f72bb2eb4ea1f0914a9cb1de72d424efe2e183a7a78ef974a655914a9ce9790
.exe windows x86

080f9bb632557bb561387c9c9f88df5f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryDosDeviceA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

gdi32

GetCharWidth32A

advapi32

RevertToSelf

user32

CharUpperBuffW

Sections

.text
Size: - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kpl0
Size: - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kpl1
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kpl2
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy