ab907aa90c05b9d223401232dea39b56c4d639e4909e5cbf09678066f5cb8c4f | Triage

Submit
Reports

Overview

overview

3

Static

static

ab907aa90c...4f.exe

windows7-x64

1

ab907aa90c...4f.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ab907aa90c05b9d223401232dea39b56c4d639e4909e5cbf09678066f5cb8c4f.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab907aa90c05b9d223401232dea39b56c4d639e4909e5cbf09678066f5cb8c4f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ab907aa90c05b9d223401232dea39b56c4d639e4909e5cbf09678066f5cb8c4f
Size

305KB
MD5

74334b8a763a704f123003e8a9885b60
SHA1

63626d4cf07e4a3ddc3590fddac82953b145d9cc
SHA256

ab907aa90c05b9d223401232dea39b56c4d639e4909e5cbf09678066f5cb8c4f
SHA512

65fb9214ab9707f11f544887bc071ccd3a4f53073a14c2e197c10db04410a05677f8eb439aec3a21da960d7cfa57692e42eb65ae33a4ec98ced9f98d4f54ab75
SSDEEP

6144:FPQ8/323bYDjpDNUTqdf/qvbEnTz/UoIXmODCvgvgQ4XnRLvHC18lJ9wQRjvx:FR/32LoRNrqIneXmOOQIRTi18byQRN

Score

N/A

Malware Config

Signatures

Files

ab907aa90c05b9d223401232dea39b56c4d639e4909e5cbf09678066f5cb8c4f
.exe windows x86

4ff6b3782c8970b73cbeabd1ec9b4838

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RemoveDirectoryW
SetLastError
CreateEventA
FindClose
LocalLock
GetTickCount
HeapFree
CreateDirectoryW
GetStringTypeA
SetPriorityClass
TlsGetValue
GetFileAttributesW
GetLocaleInfoW
GetModuleHandleA
IsValidCodePage
FindResourceW
GetFileAttributesW
GetCurrentProcess
GetExitCodeThread
SuspendThread
VirtualProtectEx

advapi32

ClearEventLogW
IsValidSecurityDescriptor
ControlService
IsValidAcl
RegQueryValueW
RegCreateKeyExW
RegDeleteValueA
IsValidSid
RegEnumKeyA
InitializeSid
CreateProcessAsUserA
IsTextUnicode
CreateServiceW

msctf

DllCanUnloadNow
DllUnregisterServer
DllUnregisterServer
TF_InitSystem

uxtheme

CloseThemeData

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy