d498a89e219cae250c3c81d426055a0403dd270b6f28e9c1102f8252b47d299a | Triage

Submit
Reports

Overview

overview

5

Static

static

d498a89e21...9a.exe

windows7-x64

5

d498a89e21...9a.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d498a89e219cae250c3c81d426055a0403dd270b6f28e9c1102f8252b47d299a.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d498a89e219cae250c3c81d426055a0403dd270b6f28e9c1102f8252b47d299a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d498a89e219cae250c3c81d426055a0403dd270b6f28e9c1102f8252b47d299a
Size

72KB
MD5

7547c1501613c2a042b76bba418809cb
SHA1

6962b3bd2e240a822355895555e7437a7bb49571
SHA256

d498a89e219cae250c3c81d426055a0403dd270b6f28e9c1102f8252b47d299a
SHA512

fc8f35ec6a383fa5e1e3ba27bbaab517d7d4f44380a79e34048804b8f4a5fb130c0b1f438d5186770b1ff225a66511c51cab4a69df72beaa576e4590f5315576
SSDEEP

1536:gBm/7M6RfVkOIjZJYmDHGKPt2H08MBWgFoBLFE1X/vlf3:gI/7Z18ZJFGKPwivWEX3B

Score

N/A

Malware Config

Signatures

Files

d498a89e219cae250c3c81d426055a0403dd270b6f28e9c1102f8252b47d299a
.exe windows x86

6ea5231d9cd0b2f98be58e09d9c9c4f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FormatMessageA
lstrcpyA
ReadConsoleA
SetFileAttributesA
GetStartupInfoW
CloseHandle
GetModuleHandleA
GetFileSize
LeaveCriticalSection
FindResourceA
CreateMutexA
ReadFile
ReadConsoleA
HeapCreate
InitializeCriticalSection
GetCurrentDirectoryW
GetLocalTime
GetLastError
lstrcatA
IsBadStringPtrW
ReadConsoleA

msi

MsiAdvertiseProductA
MsiCloseHandle
MsiCreateRecord
MsiCloseAllHandles

user32

IsCharLowerA
GetWindowTextA
IsDialogMessageA
SetFocus
IsZoomed
DispatchMessageA
IsWindow
wsprintfW
LoadCursorW
PeekMessageW
PostMessageW
GetWindowLongW
SetCursorPos

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text1
Size: 1024B - Virtual size: 241B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 178B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy