34a3638de0ca9664e05c805bf2d38654ef9106c6418927c3396ffe6cf8efd0cd | Triage

Submit
Reports

Overview

overview

1

Static

static

34a3638de0...cd.exe

windows7-x64

34a3638de0...cd.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

34a3638de0ca9664e05c805bf2d38654ef9106c6418927c3396ffe6cf8efd0cd.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

34a3638de0ca9664e05c805bf2d38654ef9106c6418927c3396ffe6cf8efd0cd.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

34a3638de0ca9664e05c805bf2d38654ef9106c6418927c3396ffe6cf8efd0cd
Size

735KB
MD5

e2bfc81aecb806444e3361c77b78d199
SHA1

142365e3c0bc1456df7ef7fce04bee33d2677949
SHA256

34a3638de0ca9664e05c805bf2d38654ef9106c6418927c3396ffe6cf8efd0cd
SHA512

00479dfc9223e8b3120b988065726cca721609b96ffea57944a4512b139ba01e24e8f5b47bcb2173a6dc43349ecf87dc4721616ab63179959892c15497c98133
SSDEEP

12288:gwUuN+FL/veyoF3Cn5eNrL3e2s0tiZi5JVPahG5edeP4z4l4OLlVcNDOP9wwZg5H:F+FL/v3a3C5eNrLhs0tiAbVPGYAo4z4Q

Score

N/A

Malware Config

Signatures

Files

34a3638de0ca9664e05c805bf2d38654ef9106c6418927c3396ffe6cf8efd0cd
.exe windows x86

3acd7108e73078d13dbb76d2ccbc2281

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
WriteConsoleW
GetFileAttributesA
VirtualAllocEx
DeleteFileW
ExitProcess
ResetEvent
OpenProcess
CreateMutexA
CloseHandle
SetEvent
RemoveDirectoryA
GetModuleHandleA
CancelIo
CreateFileA
GetStartupInfoW
GetCommandLineW
FindClose
SetLastError
GetEnvironmentVariableW
HeapSize

user32

CallWindowProcW
PeekMessageA
GetCursorInfo
GetSysColor
FillRect
DispatchMessageW
GetDC
DispatchMessageW
FindWindowA
GetClassInfoA
GetDC
GetDC
GetWindowLongA

mciseq

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy