debd56074b13138172266fed8807ab4f197a6e3e51048f52a5218cf93c289513 | Triage

Submit
Reports

Overview

overview

1

Static

static

debd56074b...13.exe

windows7-x64

1

debd56074b...13.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

debd56074b13138172266fed8807ab4f197a6e3e51048f52a5218cf93c289513.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

debd56074b13138172266fed8807ab4f197a6e3e51048f52a5218cf93c289513.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

debd56074b13138172266fed8807ab4f197a6e3e51048f52a5218cf93c289513
Size

305KB
MD5

6d1c051033837aabc6d78d26d2618030
SHA1

96c47a2a42c7dc09f70f92f2afc6acff3ff31cb3
SHA256

debd56074b13138172266fed8807ab4f197a6e3e51048f52a5218cf93c289513
SHA512

a05147e0d7db1108a3cd732b85b816cc2e4bbca95710356bf04f1908f3df6e1c5c4acca434506b1dc5f44fac71d18f92b5a43ca8559a2132d7aaf4f7dd589e46
SSDEEP

6144:6IRrwQj1WKge5aHxQDdWaaSiiKAMwt2P3nDTp:68l8KgJQpWaiiKWt2P3nXp

Score

N/A

Malware Config

Signatures

Files

debd56074b13138172266fed8807ab4f197a6e3e51048f52a5218cf93c289513
.exe windows x86

37ba8575b7c0f85986a88cb736adfdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEvent
SuspendThread
LeaveCriticalSection
GetModuleFileNameA
IsBadReadPtr
CreateDirectoryA
GetPriorityClass
GetLocaleInfoA
VirtualProtect
GetModuleHandleA
GetProcessHeap
GetVersionExA
HeapDestroy
GlobalSize
CreateFileW
lstrlenA
SetFilePointer
GetCurrentThreadId
ResumeThread
GetStdHandle
CreateFileW
HeapSize
CreateMutexW
GetFileAttributesW
IsValidLocale

user32

PeekMessageA
DestroyIcon
GetWindowLongA
LoadCursorA
GetWindowLongA
SetCursor
DrawIcon
wsprintfA
DestroyMenu
DispatchMessageA
SetRect
MessageBoxW
GetWindowTextA

dpnet

DllRegisterServer
DllGetClassObject
DllCanUnloadNow
DllUnregisterServer

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy