942b0b101da6f32e75db7941b88df4f301f8cccb57260d358c6f46dfe4cf63da | Triage

Submit
Reports

Overview

overview

Static

static

942b0b101d...da.exe

windows7-x64

3

942b0b101d...da.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

942b0b101da6f32e75db7941b88df4f301f8cccb57260d358c6f46dfe4cf63da.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

942b0b101da6f32e75db7941b88df4f301f8cccb57260d358c6f46dfe4cf63da.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

942b0b101da6f32e75db7941b88df4f301f8cccb57260d358c6f46dfe4cf63da
Size

134KB
MD5

d55a8c8073e2a72eb84650a96412e17a
SHA1

c669c5c1c723435b8dfd9193585feaf38b151d52
SHA256

942b0b101da6f32e75db7941b88df4f301f8cccb57260d358c6f46dfe4cf63da
SHA512

08d074f8ec00038630e45fd4393e0950d92a5a84a2d2f8e07c3d1cb0f82fc3390089e372c40d195eeddca15a0fb2bb3dfe070a147f16b51cfb515dc5e220da5f
SSDEEP

3072:lyza1ni07/tcmxjERpwqr8v78R87ah7qFcpA9HyapdM27v5K:lG07/mmVgpwqrkk87ahGCpA1bdh5K

Score

N/A

Malware Config

Signatures

Files

942b0b101da6f32e75db7941b88df4f301f8cccb57260d358c6f46dfe4cf63da
.exe windows x86

67d77758686be73c972ec995a72fa721

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExA
CryptReleaseContext
GetUserNameW
RegCreateKeyExA
CryptCreateHash
DuplicateTokenEx
RegDeleteValueA
CryptDestroyHash

user32

DrawIcon
ToUnicode
SendMessageA
GetMessageA
ExitWindowsEx
GetClipboardData
GetIconInfo
GetClassNameA
LoadCursorA
PeekMessageA
GetDlgItemTextA
GetDlgItem
GetWindowThreadProcessId
GetWindowTextA

kernel32

GetCurrentThreadId
lstrcmpiW
VirtualProtect
WideCharToMultiByte
lstrcatW
FindResourceW
GetUserDefaultUILanguage
lstrcpynW
lstrcpyW
CreateFileA
CloseHandle
VirtualAlloc
GetFileTime
GetEnvironmentVariableW
InitializeCriticalSection
SetFileTime
HeapAlloc
GetModuleHandleA
TryEnterCriticalSection
GetTimeZoneInformation
CreateThread
ResetEvent
GetSystemTime

shlwapi

StrCmpNIW
PathRemoveFileSpecW
wnsprintfA
PathFileExistsW
PathCombineW
PathMatchSpecW
StrStrW
SHDeleteKeyA
StrCmpNIA
PathFindFileNameW

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy