738a78d7cbed304f72f85c1be85533c767424b0a4ebdf4c1e16d62e32acd534f | Triage

Submit
Reports

Overview

overview

8

Static

static

738a78d7cb...4f.exe

windows7-x64

8

738a78d7cb...4f.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

738a78d7cbed304f72f85c1be85533c767424b0a4ebdf4c1e16d62e32acd534f.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

738a78d7cbed304f72f85c1be85533c767424b0a4ebdf4c1e16d62e32acd534f.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

10 signatures

150 seconds

General

Target

738a78d7cbed304f72f85c1be85533c767424b0a4ebdf4c1e16d62e32acd534f
Size

410KB
MD5

6f3e7a0e55fa1764d55471e7b2470959
SHA1

4214e9faca9e4a61debca1b104448a9984db9040
SHA256

738a78d7cbed304f72f85c1be85533c767424b0a4ebdf4c1e16d62e32acd534f
SHA512

4dd03649a1191c0b60e47961d677031cf73d76b8006c3d9b314cddf47b0f6535f641edbcd8faee5ae1532501598c15f6b2fd720d12627625c4a6c522226d323e
SSDEEP

12288:WC9F+DdfUzQbnZEU0sByNPPI26vWJov0:BUVbtBc1KRv

Score

N/A

Malware Config

Signatures

Files

738a78d7cbed304f72f85c1be85533c767424b0a4ebdf4c1e16d62e32acd534f
.exe windows x86

c591822d4cd7cec5e42000d9ae49abc0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetSystemDefaultLangID
LocalSize
HeapReAlloc
lstrlenA
HeapCreate
LoadLibraryExA
GetCommandLineA
CompareFileTime
CloseHandle
GetStdHandle
InterlockedExchange
SuspendThread
GetModuleHandleA
GetVersion
GetAtomNameA
GetConsoleCP
WaitForSingleObject
VirtualProtect
GlobalUnlock
WaitForMultipleObjects

gdi32

BeginPath
GetTextColor
DeleteDC
CreateICA
GetMetaFileA
Ellipse
EndPath
GetFontData
EngLineTo
AbortPath
FloodFill
DeleteObject
GdiFlush
CreateFontA
EqualRgn
Escape
CreatePalette
GetMetaRgn
GetRgnBox
GetStringBitmapA

winmm

auxGetVolume
PlaySoundA
auxSetVolume
CloseDriver
OpenDriver

secur32

AddCredentialsA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy