392776e7e49d4baa8d4a4ddfe957fca534136283d01356e9c4a759050ade8392 | Triage

Submit
Reports

Overview

overview

8

Static

static

392776e7e4...92.exe

windows7-x64

8

392776e7e4...92.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

392776e7e49d4baa8d4a4ddfe957fca534136283d01356e9c4a759050ade8392.exe

Resource

win7-20220812-en

discovery evasion persistence

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

392776e7e49d4baa8d4a4ddfe957fca534136283d01356e9c4a759050ade8392.exe

Resource

win10v2004-20220812-en

discovery evasion persistence

windows10-2004-x64

10 signatures

150 seconds

General

Target

392776e7e49d4baa8d4a4ddfe957fca534136283d01356e9c4a759050ade8392
Size

284KB
MD5

733522f7d6befc2adeac58de35d3d97f
SHA1

95dca968c11f8fbc095d999973857bbe26ba3e70
SHA256

392776e7e49d4baa8d4a4ddfe957fca534136283d01356e9c4a759050ade8392
SHA512

a0617195db7a1ed9754e333ce267d0505ed57a0b2387d2bd2aa2fbeb53f1bf90a56e16081a71b4a9a9e483a044becb17a141533bf1ad6d3c9a3a4c270ebc56db
SSDEEP

3072:UVFsHI9EWAqLo9fACZNeL+1KvXbjwWRoMXXtXNAujq+EVvWPB:UPsQ3RWfAMNeyYfbjwWho+cWB

Score

N/A

Malware Config

Signatures

Files

392776e7e49d4baa8d4a4ddfe957fca534136283d01356e9c4a759050ade8392
.exe windows x86

4ffcaa186b0e80b63d2df31256d515b6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceA
GetPrivateProfileIntA
GetModuleHandleA
GetOEMCP
EncodePointer
GetConsoleAliasW
GetDateFormatW
LoadLibraryW
lstrcpynA
CreateFileMappingA
GetTimeFormatW
GetExitCodeProcess
VirtualProtectEx
HeapSize
WaitForSingleObject

user32

FlashWindow
GetMessageW
CharToOemA
PeekMessageW
LoadMenuW
PostMessageW
LoadBitmapA
IsZoomed
DispatchMessageW
IsIconic
CreateDesktopW
InsertMenuA
wsprintfA
DrawStateA
LoadCursorW
IsDialogMessageW

uxtheme

GetThemeBool
GetThemeColor
GetWindowTheme
GetThemeTextMetrics
GetThemeTextExtent
DrawThemeEdge
GetThemeFilename
IsThemeActive
GetThemeInt
OpenThemeData
SetWindowTheme
GetThemeRect

shimeng

SE_IsShimDll
SE_ProcessDying
SE_InstallBeforeInit

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy