491ddd2b769e133f02ee9a5d4ea823653877daaee7390a86f4b0141192245c0d | Triage

Submit
Reports

Overview

overview

8

Static

static

491ddd2b76...0d.exe

windows7-x64

8

491ddd2b76...0d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

491ddd2b769e133f02ee9a5d4ea823653877daaee7390a86f4b0141192245c0d.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

491ddd2b769e133f02ee9a5d4ea823653877daaee7390a86f4b0141192245c0d.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

10 signatures

150 seconds

General

Target

491ddd2b769e133f02ee9a5d4ea823653877daaee7390a86f4b0141192245c0d
Size

338KB
MD5

37db42ef377bef40cb81916aa8cafea8
SHA1

2bd87be370ac2b61d4fa90780e32de9d703460a1
SHA256

491ddd2b769e133f02ee9a5d4ea823653877daaee7390a86f4b0141192245c0d
SHA512

47e1d7d613de419c17d4abfae27c45b10d749feb330f74fb9deccea5ca175240f2bdce8d6bab711c463ba4177d2ced75ba64e1bc7df571d912b9b1ebb6f6bd6b
SSDEEP

6144:NHXf4yfVA7at+8OFSaTqI2NmQ4Q4Lk8/FLY5atRlRwonbvrjxWlg+f4eNmOOfpud:xv4Hut+8OF/q3wi4Lk/atRoonbv5Wl1Z

Score

N/A

Malware Config

Signatures

Files

491ddd2b769e133f02ee9a5d4ea823653877daaee7390a86f4b0141192245c0d
.exe windows x86

facdb3c41ee8c9697a3c86533586c6b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetModuleHandleA
ResumeThread
CreateIoCompletionPort
LoadLibraryExA
GlobalMemoryStatus
GetCommandLineA
GetACP
IsDebuggerPresent
GetOEMCP
GetTimeFormatA
InterlockedExchange
GetTapeStatus
GetStdHandle
PeekConsoleInputA
GetProcessHeap
HeapDestroy
GetSystemDefaultLCID
GetCurrentProcessId
HeapCreate
WaitForSingleObject

user32

GetDlgItem
GetWindowTextLengthA
DragDetect
GetParent
GetTitleBarInfo
SetForegroundWindow
BeginPaint
GetCursorPos
ShowWindow
GetWindow
ReleaseDC
GetClassNameA
DrawTextA
GetFocus
FrameRect
SetActiveWindow
EndPaint
FillRect
wsprintfA

gdi32

CloseFigure
GetLayout
CreatePalette
GetClipBox
CreateBitmap

secur32

DecryptMessage

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 780KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy