a89c321340f2a91a6702b2d44494cd65361de847c2f6d276fe3ea4f184b86966 | Triage

Submit
Reports

Overview

overview

Static

static

a89c321340...66.exe

windows7-x64

a89c321340...66.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a89c321340f2a91a6702b2d44494cd65361de847c2f6d276fe3ea4f184b86966.exe

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a89c321340f2a91a6702b2d44494cd65361de847c2f6d276fe3ea4f184b86966.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a89c321340f2a91a6702b2d44494cd65361de847c2f6d276fe3ea4f184b86966
Size

86KB
MD5

6155199aee7690fbab66edb2b1e50880
SHA1

0ebe6b5bef3a6f00721ba9bda73798d00d35584c
SHA256

a89c321340f2a91a6702b2d44494cd65361de847c2f6d276fe3ea4f184b86966
SHA512

e35369f02704af47f0ae55c34b3991e032ce7ba77af5ef467183c95d19e971a848844a05b84654de123204e67288532c3be4050e4958f9c6e484cf8206cf56e6
SSDEEP

1536:E/2smu4IdR0Qn1CrtfxCJHXRqM/5gkDraZ/BhAR:mytc1CZ5QHGc

Score

N/A

Malware Config

Signatures

Files

a89c321340f2a91a6702b2d44494cd65361de847c2f6d276fe3ea4f184b86966
.exe windows x86

959282a65995c1da957b4603bc167e0c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalLock
ReadConsoleW
GetFileTime
GetModuleHandleA
VirtualProtect
GetProcessHeap
GetModuleFileNameA
EnterCriticalSection
GetStartupInfoW
FindClose
GetConsoleAliasA
GetDriveTypeA
TlsGetValue
GlobalLock
InitializeCriticalSection
GetLocalTime
LeaveCriticalSection
CreateFileA
GetCurrentThreadId
RemoveDirectoryW
DeleteFileA
Sleep
GetConsoleMode
DeleteFileA
CreateDirectoryA

user32

GetWindowLongA
GetWindowDC
IsWindowEnabled
FillRect
GetWindowLongA
GetKeyState
MessageBoxA
GetSysColor
PeekMessageA
EqualRect
IsWindowVisible
wsprintfA
DispatchMessageA

ctl3d32

Ctl3dCtlColor
Ctl3dSetStyle
Ctl3dDlgProc
Ctl3dEnabled

advapi32

IsValidSid

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy