7b9d7335ab712ab830705bf1c944c6a358c792b280a9618ba04de2a6aee0dee2 | Triage

Submit
Reports

Overview

overview

Static

static

7b9d7335ab...e2.exe

windows7-x64

3

7b9d7335ab...e2.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

7b9d7335ab712ab830705bf1c944c6a358c792b280a9618ba04de2a6aee0dee2.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

7b9d7335ab712ab830705bf1c944c6a358c792b280a9618ba04de2a6aee0dee2.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

7b9d7335ab712ab830705bf1c944c6a358c792b280a9618ba04de2a6aee0dee2
Size

305KB
MD5

88486685b453f555c7abbc6c060d219f
SHA1

61e947243faf3ba3dbeb03f36da619b0fdff2450
SHA256

7b9d7335ab712ab830705bf1c944c6a358c792b280a9618ba04de2a6aee0dee2
SHA512

9bbe001d6109751c38835a05f69594f00b3b6517d597d30aae72a726fdc58e55dd0951a363a87b47fe9f537f48917ab80b7b79246c56651de18194561eb25488
SSDEEP

6144:MjZGSZ91ZEsYnzXky/eREwtr6ZpsbGsLNFgbMliLijz/GXNey:MoSZ91Zi4kwYKGG0toOX8y

Score

N/A

Malware Config

Signatures

Files

7b9d7335ab712ab830705bf1c944c6a358c792b280a9618ba04de2a6aee0dee2
.exe windows x86

0d88f446573243943e1520d466f5568e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveFileSpecW
PathFileExistsW
PathMatchSpecW
wvnsprintfA
wnsprintfW
wnsprintfA
StrCmpNIA
PathCombineW
SHDeleteKeyA
PathFindFileNameW

kernel32

CreateProcessW
VirtualAlloc
OpenMutexW
lstrcmpiW
WideCharToMultiByte
FindResourceW
GetFileAttributesW
GetModuleHandleA
VirtualProtect
lstrcatA
HeapReAlloc
CreateThread
GetUserDefaultUILanguage
GetFileSize
SetFilePointer
FindClose

advapi32

CryptDestroyHash
CryptCreateHash
GetUserNameW
RegCreateKeyExA
CryptReleaseContext
RegCloseKey
RegSetValueExA
CryptHashData
CryptAcquireContextW
RegDeleteValueA
DuplicateTokenEx
CryptGetHashParam
RegQueryValueExA

user32

GetCursorPos
SetProcessWindowStation
FindWindowExA
PeekMessageA
MsgWaitForMultipleObjects
DispatchMessageA
GetWindowLongA
GetIconInfo
GetClipboardData
LoadCursorA
GetKeyboardState
GetKeyState
GetForegroundWindow
GetClassNameA
DrawIcon
GetWindowTextA
OpenWindowStationA
GetDlgItem

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy