5abaa867b2ac3c1fb688f62f0ea2fd299ef216391043ee434636141f47f1e92e | Triage

Submit
Reports

Overview

overview

1

Static

static

5abaa867b2...2e.exe

windows7-x64

5abaa867b2...2e.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5abaa867b2ac3c1fb688f62f0ea2fd299ef216391043ee434636141f47f1e92e.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

5abaa867b2ac3c1fb688f62f0ea2fd299ef216391043ee434636141f47f1e92e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

5abaa867b2ac3c1fb688f62f0ea2fd299ef216391043ee434636141f47f1e92e
Size

168KB
MD5

95ffbab9d79479f0ee38d9f21a443386
SHA1

ccfb40571038eb7e56552a4e6422b991fabcfa6e
SHA256

5abaa867b2ac3c1fb688f62f0ea2fd299ef216391043ee434636141f47f1e92e
SHA512

4e53ab0937f98a2a2722294561f60f555f2fecfbb8703b94043d49e444663d5e4b3a5b194f6f27d4394d8242e74635143f10cb737617a4d48a2592699145f1ff
SSDEEP

3072:RRMgOO6HpBZKcmzqjq+Xks7RqE7mcH2pInfBNtEkBaPigdv3DcBSjaLCYLJlJ:AbrMlq++XCE7DH2p0fBNXaPigVceaWYh

Score

N/A

Malware Config

Signatures

Files

5abaa867b2ac3c1fb688f62f0ea2fd299ef216391043ee434636141f47f1e92e
.exe windows x86

d1d1187d8e0bd41ebdbc979ca4b98811

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mciSendCommandA
sndPlaySoundA

setupapi

InstallCatalog
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

advapi32

RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA

shlwapi

PathAddBackslashA

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

lstrlenA
GetAtomNameW
InterlockedCompareExchange
SetUnhandledExceptionFilter
InterlockedExchange
UnhandledExceptionFilter
CreateProcessW
GetACP
GetModuleHandleW
GetCurrentThreadId
LocalAlloc
Sleep
GetSystemTimeAsFileTime
GetLocaleInfoW
EnumResourceNamesA
GetTickCount
GetCurrentProcessId
QueryMemoryResourceNotification
lstrlenW
IsDebuggerPresent
MultiByteToWideChar
WideCharToMultiByte
GetStartupInfoW
RaiseException
GetEnvironmentVariableW
QueryPerformanceCounter
GetCurrentProcess
TerminateProcess
GetThreadLocale

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy