c0a3a0ca0688174eb89ce0581d86823983c403423c2f1781d716c450793aa07f | Triage

Submit
Reports

Overview

overview

Static

static

c0a3a0ca06...7f.exe

windows7-x64

c0a3a0ca06...7f.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c0a3a0ca0688174eb89ce0581d86823983c403423c2f1781d716c450793aa07f.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

c0a3a0ca0688174eb89ce0581d86823983c403423c2f1781d716c450793aa07f.exe

Resource

win10v2004-20220812-en

evasion persistence

windows10-2004-x64

14 signatures

150 seconds

General

Target

c0a3a0ca0688174eb89ce0581d86823983c403423c2f1781d716c450793aa07f
Size

136KB
MD5

70c5df86db264c3f1c50434e67a06fa1
SHA1

fc770c779dafbc246951cc4567e3ee1ed2f708ed
SHA256

c0a3a0ca0688174eb89ce0581d86823983c403423c2f1781d716c450793aa07f
SHA512

08bdbf798350f657f7509fc7f3557c6897244ec4ef8df4c9561fc355512800abd666d60f0c89a8474b77b634136d13bfc056155ddb6e185006b50067c8e67a19
SSDEEP

3072:MKh4e5HRH21i7MbHCqLvSXStQg4ci68OgUQ:DnHiCM75iaQyfDQ

Score

N/A

Malware Config

Signatures

Files

c0a3a0ca0688174eb89ce0581d86823983c403423c2f1781d716c450793aa07f
.exe windows x86

57238f18790663229f420703943e470b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RevertToSelf

winmm

midiStreamPause

mpr

WNetConnectionDialog

msvbvm60

MethCallEngine
Zombie_QueryInterface
ord702
ord520
EVENT_SINK_AddRef
ord675
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord100
ord542

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy