38b17129c27b846ac8dcfbfa17ff2e416b7265d0b88504441064978e703afb1d | Triage

Submit
Reports

Overview

overview

8

Static

static

38b17129c2...1d.exe

windows7-x64

8

38b17129c2...1d.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

38b17129c27b846ac8dcfbfa17ff2e416b7265d0b88504441064978e703afb1d.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

38b17129c27b846ac8dcfbfa17ff2e416b7265d0b88504441064978e703afb1d.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

38b17129c27b846ac8dcfbfa17ff2e416b7265d0b88504441064978e703afb1d
Size

311KB
MD5

74e04bceebb57d0d1807dba1440149f0
SHA1

399c07af20c042e00d8f4c56214919aa6c99db93
SHA256

38b17129c27b846ac8dcfbfa17ff2e416b7265d0b88504441064978e703afb1d
SHA512

ffe85ae9ca6a66e9e7374c12ce04bc2c3a32197e4b4e88cea3540d86c591c201f67e99e1e62c982ec62c2675aa34824ace835c480d2fe0a0abd59e5213910bf8
SSDEEP

6144:k1vzjbbHLCL7pBLfCartChwkmBjH+7hvwTR3Z+3VW6qkFtnJr7JOU9r:kFjbbqJCarAVmBQhId3GVTFxZVT9r

Score

N/A

Malware Config

Signatures

Files

38b17129c27b846ac8dcfbfa17ff2e416b7265d0b88504441064978e703afb1d
.exe windows x86

a21ce245385be39fe19da45f5edef1f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetErrorMode
GlobalUnlock
VirtualProtect
GetLocaleInfoA
Sleep
GetLastError
LockResource
FileTimeToLocalFileTime
RaiseException
CloseHandle
SetConsoleOutputCP
HeapCreate
GetDriveTypeA
GetACP
GlobalAddAtomA
GlobalFree
GetStdHandle
LoadLibraryExA
EnterCriticalSection
InterlockedExchange
GlobalDeleteAtom

user32

OemToCharA
GetMenuItemInfoA
GetFocus
ValidateRect
GetCursorPos
ShowWindow
GetWindowTextA
DrawEdge
IsIconic
GetClassNameA
EndPaint
GetParent
ClipCursor
ReleaseDC
SetForegroundWindow
BeginPaint
GetActiveWindow
DrawTextA
GetWindow

ntdsapi

DsCrackNamesA
DsGetSpnA
DsBindA
DsIsMangledDnA
DsFreeNameResultA

netapi32

DsRoleCancel

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 696KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy