29fae8e7085ddc077be54f88ec488760b26313e8a0d10e56ee7e09d76ba12fb4 | Triage

Submit
Reports

Overview

overview

8

Static

static

29fae8e708...b4.exe

windows7-x64

8

29fae8e708...b4.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

29fae8e7085ddc077be54f88ec488760b26313e8a0d10e56ee7e09d76ba12fb4.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

29fae8e7085ddc077be54f88ec488760b26313e8a0d10e56ee7e09d76ba12fb4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

29fae8e7085ddc077be54f88ec488760b26313e8a0d10e56ee7e09d76ba12fb4
Size

316KB
MD5

4fb4a5471a8c86612438fca38af964a6
SHA1

d66125506161b895c91c45acd82b9e9173b41815
SHA256

29fae8e7085ddc077be54f88ec488760b26313e8a0d10e56ee7e09d76ba12fb4
SHA512

60e0c81bbc4df72c0105b8a8b4b6d3e57b71db9f2b50483180cd53dc488daf455337605e8d9cf86c6a681a92d8643ff6442fcb880b5ac69de4779c49d5d5ca7c
SSDEEP

6144:RhgMbyt+/lFO7UXdj5hcD28Ek5k+6GGv+H1wpZnjZr0J/x:RhgxtAA70R5uq89H6EHe3pUx

Score

N/A

Malware Config

Signatures

Files

29fae8e7085ddc077be54f88ec488760b26313e8a0d10e56ee7e09d76ba12fb4
.exe windows x86

80bd0ba64bd619044b4c257030e02aa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
FindAtomA
GlobalFree
OpenSemaphoreA
FormatMessageA
GetCurrentThread
GetThreadPriority
GetCompressedFileSizeA
FlushFileBuffers
VirtualProtect
GetExpandedNameA
GetACP
GetEnvironmentStringsA
GetStdHandle
GetCurrentProcessId
GetSystemDirectoryA
WriteConsoleA
HeapCreate
GetModuleHandleA
IsDebuggerPresent
InterlockedExchange

user32

ValidateRgn
BeginPaint
GetParent
ShowWindow
GetFocus
DrawTextA
SetForegroundWindow
wsprintfA
ReleaseDC
FrameRect
GetWindow
EndPaint
GetClassNameA
FillRect
GetWindowTextLengthA
GetCursorPos
GetDlgItem
SetActiveWindow
IsIconic

linkinfo

GetLinkInfoData
ResolveLinkInfoA
GetCanonicalPathInfoA
IsValidLinkInfo
DestroyLinkInfo

rtutils

LogEventW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy