95385e0b028b2b89bf68716bbebc194267e2259161748f94ce01b96f74dfc3f8 | Triage

Submit
Reports

Overview

overview

3

Static

static

95385e0b02...f8.exe

windows7-x64

3

95385e0b02...f8.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

95385e0b028b2b89bf68716bbebc194267e2259161748f94ce01b96f74dfc3f8.exe

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

95385e0b028b2b89bf68716bbebc194267e2259161748f94ce01b96f74dfc3f8.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

95385e0b028b2b89bf68716bbebc194267e2259161748f94ce01b96f74dfc3f8
Size

862KB
MD5

0073251cdb03405fcc322a1ddd484603
SHA1

1f829a42b7bb8cf75acf64a11e15ed7af0df613f
SHA256

95385e0b028b2b89bf68716bbebc194267e2259161748f94ce01b96f74dfc3f8
SHA512

7797cfa5e6a609c5b751dd97e70a5884316218749497d1f66a663a13543c7a321c153c2da48a9d1886323b4c5daec3e74a1327e7877e32794f48cd862a3b10ee
SSDEEP

24576:7YBooNCRo8wGMHYDB0GnWIV56rAqaPp3rcYfL:7gN6o8FeYDpnBYrnaBrR

Score

N/A

Malware Config

Signatures

Files

95385e0b028b2b89bf68716bbebc194267e2259161748f94ce01b96f74dfc3f8
.exe windows x86

f2c8ed69dee3a5f6b0c1efcaa15768d3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemFree
CoInitialize

kernel32

GetVersion
lstrlenA
Sleep
GetCommandLineA
GlobalAlloc
GetModuleHandleA
WriteFile
CreateFileW
GetStringTypeW
InterlockedExchange
GetCurrentProcess
FormatMessageW
GetTickCount
ExitProcess
VirtualFree
WideCharToMultiByte
UnhandledExceptionFilter
GetFileType
FreeEnvironmentStringsW
lstrcpyW
CreateFileA
GetCPInfo
VirtualAlloc
GetCurrentThread
GetStdHandle
WaitForSingleObject
HeapAlloc
CloseHandle
ResetEvent
CreateThread
MultiByteToWideChar
GetSystemTimeAsFileTime
GetProcAddress
FreeEnvironmentStringsA
HeapFree
LocalFree
FreeLibrary
InterlockedIncrement
GetLocaleInfoA
SetConsoleCtrlHandler
FindClose
RtlUnwind

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy