9aa0f79770f5e18f59ddca1ad24ab70f495dae6c916445a7c47fe86c2e5b48ee | Triage

Submit
Reports

Overview

overview

7

Static

static

9aa0f79770...ee.exe

windows7-x64

7

9aa0f79770...ee.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9aa0f79770f5e18f59ddca1ad24ab70f495dae6c916445a7c47fe86c2e5b48ee.exe

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

9aa0f79770f5e18f59ddca1ad24ab70f495dae6c916445a7c47fe86c2e5b48ee.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

9aa0f79770f5e18f59ddca1ad24ab70f495dae6c916445a7c47fe86c2e5b48ee
Size

102KB
MD5

089d78244fc6b9b48b4a003569bb0fac
SHA1

dafddf8196bb6ef9e77270cdf3414a6cbede6db3
SHA256

9aa0f79770f5e18f59ddca1ad24ab70f495dae6c916445a7c47fe86c2e5b48ee
SHA512

381692cef5888bf62d924b88038066546195e1ddd21fa9ee26b2ec0cd39453a47740b2ac500e50b93a3e9931419b6a51f64461674daafd2bcd995af233eb1679
SSDEEP

1536:XiDLDSW3ziBDWBB2QB7RUd6LXIeTH+nEOh6CdBbDA2x5C6Bw4zw2F:SPGVFWb2GF4aH+EO5Rv5CI1w2F

Score

N/A

Malware Config

Signatures

Files

9aa0f79770f5e18f59ddca1ad24ab70f495dae6c916445a7c47fe86c2e5b48ee
.exe windows x86

683fa3b5667d80107db91156c3e49198

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
DeleteCriticalSection
DisableThreadLibraryCalls
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetModuleHandleA
GetProcessHeap
GetTickCount
GetVersionExA
HeapAlloc
InterlockedDecrement
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
ReadFile
SetLastError
lstrlenA

advapi32

AllocateAndInitializeSid
ChangeServiceConfigA
LockServiceDatabase
LookupAccountSidA
OpenProcessToken
OpenSCManagerA
QueryServiceStatus
RegEnumKeyExA
RegEnumValueA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueA

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 946B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy