cfd9cb29e81e03a04622577fdfff09114e32259dc77a6c8f27dc080ceb306540 | Triage

Submit
Reports

Overview

overview

1

Static

static

cfd9cb29e8...40.exe

windows7-x64

cfd9cb29e8...40.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cfd9cb29e81e03a04622577fdfff09114e32259dc77a6c8f27dc080ceb306540.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

cfd9cb29e81e03a04622577fdfff09114e32259dc77a6c8f27dc080ceb306540.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

cfd9cb29e81e03a04622577fdfff09114e32259dc77a6c8f27dc080ceb306540
Size

14KB
MD5

3f174e49f3d7caa0f3e3ceea07a47869
SHA1

356bf86f7fda8e1e2cd11b9094f42012793130ca
SHA256

cfd9cb29e81e03a04622577fdfff09114e32259dc77a6c8f27dc080ceb306540
SHA512

1703451ec2ad7a25475aaf01d180ddcd7748420475544224d5957e05340afb165f471f9701fc2fedba8b3ff27712084005c77d41db45b13c885842bf9fc7bb06
SSDEEP

384:N/Va/LAYE7FhQEQcMyjKOhPWZbEC1bRONEv:LajhExQcMy2QC1bRr

Score

N/A

Malware Config

Signatures

Files

cfd9cb29e81e03a04622577fdfff09114e32259dc77a6c8f27dc080ceb306540
.exe windows x86

352ec06b24383bd872774ba85a898b48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
Sleep
DeleteFileA
lstrcatA
lstrcpyA
GetCurrentProcess
ResetEvent
GetProcessHeap
GetProcAddress
PulseEvent
FreeLibrary
GetModuleHandleW
CloseHandle
HeapReAlloc
VirtualAlloc
ExitProcess
GetModuleHandleA
GetCommandLineA
CreateEventA
SetEvent
GetLastError
WriteFile
OpenProcess
HeapAlloc
HeapFree
CreateFileA
GetFileAttributesA
GetTempPathA
CompareStringA
Process32First
CreateToolhelp32Snapshot
TerminateProcess
RtlUnwind
InterlockedExchange
VirtualQuery

user32

MessageBoxA
wsprintfA
CharToOemA
ExitWindowsEx
AnyPopup
GetParent
ShowWindow
GetForegroundWindow
IsChild

advapi32

RegDeleteValueA
RegOpenKeyExA
RegEnumKeyA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA

shell32

ShellExecuteA

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy