ba8be615676662120bd3632a0902d97dd2c165db27113652dd9a05c5f4581e7c | Triage

Submit
Reports

Overview

overview

8

Static

static

ba8be61567...7c.exe

windows7-x64

8

ba8be61567...7c.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ba8be615676662120bd3632a0902d97dd2c165db27113652dd9a05c5f4581e7c.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

ba8be615676662120bd3632a0902d97dd2c165db27113652dd9a05c5f4581e7c.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

10 signatures

150 seconds

General

Target

ba8be615676662120bd3632a0902d97dd2c165db27113652dd9a05c5f4581e7c
Size

340KB
MD5

8430692abafa60045dfe92e337afa1f9
SHA1

3859560bb6860e2c41a06d89bf9f40edd02e34f5
SHA256

ba8be615676662120bd3632a0902d97dd2c165db27113652dd9a05c5f4581e7c
SHA512

dc301263fc762ab9f07218ad5a63078e23eeb65810d63e9d24a10c766d927b1381e0061720c2627c650f3f2577d7574844c92551b68045dca7a3f0148007f028
SSDEEP

6144:i4nUQgTT7uC2KykC+3vNtkohLa8Yuh6n9aSDAWhCMTYrhllPZ7NSdfyBN1csBNnP:/nUQATBl1zkUFv6n9a8AWhCMkrhllxSO

Score

N/A

Malware Config

Signatures

Files

ba8be615676662120bd3632a0902d97dd2c165db27113652dd9a05c5f4581e7c
.exe windows x86

d4b6cc23c6d67c0559e995fc0f5562b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
HeapDestroy
GetCommandLineA
VirtualProtect
LoadLibraryExA
GetUserDefaultLCID
GetTapeStatus
GetSystemTime
WaitForSingleObject
PeekConsoleInputA
IsDebuggerPresent
InterlockedExchange
ResumeThread
HeapCreate
GlobalMemoryStatus
GetOEMCP
GetCurrentProcessId
GetTimeFormatA
GetModuleHandleA
FreeConsole
GetACP

user32

GetTitleBarInfo
SetForegroundWindow
GetFocus
BeginPaint
FrameRect
ShowWindow
wsprintfA
DragDetect
AnyPopup
GetCursorPos
GetDC
GetClassNameA
GetWindow
ReleaseDC
DrawTextA
GetParent
CreateIcon
FillRect
EndPaint

ntshrui

GetLocalPathFromNetResourceA
IsFolderPrivateForUser
SetFolderPermissionsForSharing
GetNetResourceFromLocalPathA
IsPathSharedA

adsldpc

ADsEnumClasses

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 840KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy