8954c833245b308280fb072642bf88790c06bdadf0fd90504d75dda9261f80aa | Triage

Submit
Reports

Overview

overview

8

Static

static

8954c83324...aa.exe

windows7-x64

8

8954c83324...aa.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8954c833245b308280fb072642bf88790c06bdadf0fd90504d75dda9261f80aa.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

8954c833245b308280fb072642bf88790c06bdadf0fd90504d75dda9261f80aa.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

8954c833245b308280fb072642bf88790c06bdadf0fd90504d75dda9261f80aa
Size

749KB
MD5

48db42b7a222978388b834a81be14055
SHA1

b5ceef6e9dfa1c3a7a06d3992e8135c4d3fc92ab
SHA256

8954c833245b308280fb072642bf88790c06bdadf0fd90504d75dda9261f80aa
SHA512

b49ae00277861b0f92747606cbe466f4c4655925988cd5f1ccd2c9ad152b5047e0b5029667fa27ab2d97aeaf0acd67d06d05cce214694724ea1f4f49cf166cb5
SSDEEP

12288:edrPVNVofWFzMHZRPg45zLyyoIzGGxiJmQIVRHNG9Qm1WUcXgl66y62TUJ:INyfWpgVroaG9ZyRHNDS642T

Score

N/A

Malware Config

Signatures

Files

8954c833245b308280fb072642bf88790c06bdadf0fd90504d75dda9261f80aa
.exe windows x86

0e0c11b84ba035dc60cd9ad4ba3b3214

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
CreateMailslotA
CreateEventA
RemoveDirectoryA
CreateDirectoryA
SetVolumeLabelW
WriteConsoleA
FindClose
VirtualProtectEx
ExitThread
RemoveDirectoryA
GetModuleHandleA
FindClose
GetFileType
GetCommandLineA
IsBadCodePtr
FindAtomA
SetEvent
ReleaseMutex
GetVersion
ResetEvent
GetSystemTime
SetStdHandle
HeapFree
WriteFile

uxtheme

CloseThemeData
CloseThemeData
GetThemeSysSize
DrawThemeEdge
DrawThemeBackground
GetThemeColor
IsThemeActive
GetThemeTextMetrics
OpenThemeData
SetWindowTheme
GetThemeRect
GetThemeTextExtent
GetWindowTheme

rasmxs

DeviceEnum
DeviceEnum
DeviceEnum
DeviceEnum

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy