ca8af174a12b4a49549c9ce3e6951cb01557074efc6714dd863758983ca5727f | Triage

Submit
Reports

Overview

overview

Static

static

ca8af174a1...7f.exe

windows7-x64

3

ca8af174a1...7f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ca8af174a12b4a49549c9ce3e6951cb01557074efc6714dd863758983ca5727f.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca8af174a12b4a49549c9ce3e6951cb01557074efc6714dd863758983ca5727f.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

ca8af174a12b4a49549c9ce3e6951cb01557074efc6714dd863758983ca5727f
Size

319KB
MD5

c91607d5518601e734c47ee94fba9865
SHA1

c803655432303f5a489e9f2718176f212fe93ba3
SHA256

ca8af174a12b4a49549c9ce3e6951cb01557074efc6714dd863758983ca5727f
SHA512

d0b5bd5124ddf538bd7a2fe706d0b5862becc939959adbd27484ecab6dba6ef63dca3ecb7606512ec7ab3b048ddd5882fc281438117aebaf6a56d25d3e00d3a3
SSDEEP

6144:7ezwA2OrXJHznZ63v5OcxChG2kiz4Hedpg5m0BK6CsfoBE:P3otsfxv1HNg0BK6Bf4E

Score

N/A

Malware Config

Signatures

Files

ca8af174a12b4a49549c9ce3e6951cb01557074efc6714dd863758983ca5727f
.exe windows x86

493b00c9b6501c37574dfbc52e0cdb47

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptReleaseContext
RegCreateKeyExA
RegEnumKeyExA
RegDeleteValueA
CryptCreateHash
CryptHashData
RegSetValueExA
RegCloseKey
CryptDestroyHash

user32

SetProcessWindowStation
GetKeyboardState
CharLowerBuffA
GetCursorPos
DrawIcon
LoadCursorA
SetThreadDesktop
ToUnicode
CloseDesktop
GetKeyState
OpenDesktopA
GetDlgItem
GetWindowLongA
EndDialog
MsgWaitForMultipleObjects
DispatchMessageA
GetForegroundWindow

shlwapi

PathMatchSpecW
wvnsprintfA
wvnsprintfW
StrStrW
PathCombineW
wnsprintfA
StrCmpNIW
PathRemoveFileSpecW
StrCmpNIA
PathFindFileNameW
PathFileExistsW

kernel32

WideCharToMultiByte
GetModuleHandleA
GetFileTime
VirtualProtect
GetFileSizeEx
GetFileAttributesW
GetSystemTime
FindClose
WaitForSingleObject
VirtualAlloc
FindFirstFileW
FindNextFileW
lstrcmpiA
GetUserDefaultUILanguage
LeaveCriticalSection
lstrcpynW

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy