5219bf3dcaccb10b0113828d7a83f0084a21943aba58d02ce0507a77da6910b3 | Triage

Submit
Reports

Overview

overview

1

Static

static

5219bf3dca...b3.exe

windows7-x64

5219bf3dca...b3.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5219bf3dcaccb10b0113828d7a83f0084a21943aba58d02ce0507a77da6910b3.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

5219bf3dcaccb10b0113828d7a83f0084a21943aba58d02ce0507a77da6910b3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

5219bf3dcaccb10b0113828d7a83f0084a21943aba58d02ce0507a77da6910b3
Size

8KB
MD5

ee21bd8ab84334092b39c0caf9950a4f
SHA1

3bd92fef619c05447a62236a5b75414ffa9a9217
SHA256

5219bf3dcaccb10b0113828d7a83f0084a21943aba58d02ce0507a77da6910b3
SHA512

fca90169d12df143520020163c452641ca966be3f41cd3c56c08f2f429cb9f4e5c43b83b6ae50089d6b80d734a9896da761f2259084d34a702c2f44648d296ec
SSDEEP

96:tRvEuhTXNTFcpD6rP51tuI6E7gmii6ih9qlDUgyL8y9aP+EwTj/V:tRcyTW6t7uIAmiDihUna83mEwTjd

Score

N/A

Malware Config

Signatures

Files

5219bf3dcaccb10b0113828d7a83f0084a21943aba58d02ce0507a77da6910b3
.exe windows x86

2e7ad29b2b9dcab8058610e2a0fd8ab8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
TlsFree
GetProcessHeap
CreateThread
GetThreadLocale
SetEvent
GetModuleHandleA
GetStdHandle
CompareStringA
GetPriorityClass
GetConsoleCP
GetExitCodeThread
IsDBCSLeadByte
CreatePipe
TlsGetValue
GlobalFindAtomA
GetOEMCP
GetShortPathNameA
VirtualAlloc
CreateMutexA
GetUserDefaultLangID

user32

GetWindow
ReleaseDC
IsWindowVisible
GetWindowTextLengthA
GetClassInfoExA
ShowWindow
GetForegroundWindow
GetWindowTextA
IsIconic
GetSystemMetrics
GetClassNameA
CloseWindow
ValidateRect
GetActiveWindow
ReleaseDC
GetDC
RegisterClassA
GetFocus
InvalidateRect

shell32

SHGetFolderPathA
SHGetFileInfoA
SHCreateShellItem
SHBrowseForFolderA
SHChangeNotify

ntdsapi

DsBindA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 880KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy