29e3b7535aec3f4882a69959a20d2990532fa10a72ef5b3c84d71bec0051a177 | Triage

Submit
Reports

Overview

overview

1

Static

static

29e3b7535a...77.exe

windows7-x64

29e3b7535a...77.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

29e3b7535aec3f4882a69959a20d2990532fa10a72ef5b3c84d71bec0051a177.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

29e3b7535aec3f4882a69959a20d2990532fa10a72ef5b3c84d71bec0051a177.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

29e3b7535aec3f4882a69959a20d2990532fa10a72ef5b3c84d71bec0051a177
Size

112KB
MD5

6e7ac2439c7bc0cf77d6c92651db1540
SHA1

becfda94ffff589244142e1ab407fc5aa3a8262a
SHA256

29e3b7535aec3f4882a69959a20d2990532fa10a72ef5b3c84d71bec0051a177
SHA512

efda980a54d75ded2b640428a760adcd47a2fa9ca06fe706819885ca46240ab87acfe512c5d403caebd5e34ab868a1fa1312353b3b443f2f916f3e979ba538f1
SSDEEP

3072:mfy+57KnRMUqdl7fPOd6RA4+onGeJP2PiIo/:6y+hYRMg6y4+AGeJKiIK

Score

N/A

Malware Config

Signatures

Files

29e3b7535aec3f4882a69959a20d2990532fa10a72ef5b3c84d71bec0051a177
.exe windows x86

4a669cca942eedfbb8fa07b7df7eb408

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
lstrlenA
GetCommandLineW
ResetEvent
LocalSize
WriteFile
ReleaseMutex
VirtualAllocEx
CloseHandle
LoadLibraryW
CreateMutexW
GlobalFree
SuspendThread
GetSystemInfo
CreateEventW
GetPrivateProfileIntA
FreeConsole
GetStdHandle
GetEnvironmentVariableA
InterlockedExchange

advapi32

CreateServiceW
RegDeleteValueA
CloseEventLog
IsValidSecurityDescriptor
IsTextUnicode
RegEnumKeyA
RegCloseKey
ClearEventLogW
IsValidSid
ControlService
RegQueryValueW
RegCreateKeyExW
InitializeSid
InitializeSid

fwcfg

InitHelperDll
InitHelperDll
InitHelperDll
InitHelperDll
InitHelperDll

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 370KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy