385d39e69a1e9063d4b495abe72ad4d04ed351e830994ee52f5d2828a054488d | Triage

Submit
Reports

Overview

overview

7

Static

static

385d39e69a...8d.exe

windows7-x64

385d39e69a...8d.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

385d39e69a1e9063d4b495abe72ad4d04ed351e830994ee52f5d2828a054488d.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

385d39e69a1e9063d4b495abe72ad4d04ed351e830994ee52f5d2828a054488d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

7 signatures

150 seconds

General

Target

385d39e69a1e9063d4b495abe72ad4d04ed351e830994ee52f5d2828a054488d
Size

50KB
MD5

31fd58e5b993cdb774af278c89dcf23d
SHA1

e6ab33dc6b982bf3a617b4f7531d1c59bfb29171
SHA256

385d39e69a1e9063d4b495abe72ad4d04ed351e830994ee52f5d2828a054488d
SHA512

950d2da9c5095f81a6798fefe44000a7e435ee8695f479936c89152f6fd9ef6322c44555a0d490ee0877c847dd82337dc193761e2cb44871f1e792090ae80667
SSDEEP

768:j1aFgrOvsTHiMKAikQ9Tm444Y4eGMmlbO/VYdK84tgFoC6CkC5HVYPC0:jYFqxKA+R3UDTmASsvqHDHyP

Score

N/A

Malware Config

Signatures

Files

385d39e69a1e9063d4b495abe72ad4d04ed351e830994ee52f5d2828a054488d
.exe windows x86

5d4c65057d53d17a227df82239e19e77

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcessHeap
HeapAlloc
GetProcAddress
LoadLibraryA

user32

EndPaint
EndMenu
EndDialog
EndDeferWindowPos
EnumChildWindows
EnableScrollBar
EnableMenuItem
EmptyClipboard
CloseClipboard
ClipCursor
ClientToScreen
ChildWindowFromPointEx
ChildWindowFromPoint
DialogBoxParamW
CreateDialogParamW
EnableWindow

advapi32

RegOpenKeyW
RegOpenKeyA

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 482B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy