d71bce1668e0c314ab64d63221017143140ef85f6036a18c6ad2c84b378225cd | Triage

Submit
Reports

Overview

overview

9

Static

static

d71bce1668...cd.exe

windows7-x64

9

d71bce1668...cd.exe

windows10-2004-x64

9

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d71bce1668e0c314ab64d63221017143140ef85f6036a18c6ad2c84b378225cd.exe

Resource

win7-20220901-en

discovery evasion

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

d71bce1668e0c314ab64d63221017143140ef85f6036a18c6ad2c84b378225cd.exe

Resource

win10v2004-20220901-en

discovery evasion persistence

windows10-2004-x64

7 signatures

150 seconds

General

Target

d71bce1668e0c314ab64d63221017143140ef85f6036a18c6ad2c84b378225cd
Size

539KB
MD5

65cc13a71c428b3a05c02f14e8b46d80
SHA1

ab0dcf90db851d93b1bcc7319021e121ec849315
SHA256

d71bce1668e0c314ab64d63221017143140ef85f6036a18c6ad2c84b378225cd
SHA512

31d84c1c4fe01a826484016094d8699c28d60f707643d5737d675bf3bcee45059689cf59d635c34e99120ab006e3347500580b247bc27f36b66053d01bc16d9b
SSDEEP

12288:EpuySOdgEX7fq0v5EOQmMUuKtuCiaktag/FJ2aMqepj3+RuquALfB1PjoTN:xyNWG+GpQmMUfqXBMfpj3+R3x1Lo

Score

N/A

Malware Config

Signatures

Files

d71bce1668e0c314ab64d63221017143140ef85f6036a18c6ad2c84b378225cd
.exe windows x86

68e0eb436fa92a3142a57ae917eca92a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorA
IsZoomed
IsDialogMessageA
SetFocus
IsWindow
PeekMessageA
CharToOemA
DispatchMessageA
GetWindowLongA
GetMessageA

kernel32

GetConsoleTitleA
GetLogicalDrives
GetModuleHandleA
SetFileAttributesA
VirtualQueryEx
lstrcmpA
SetCurrentDirectoryA
SetEndOfFile
GetComputerNameW
GetFullPathNameA
GetProcAddress
CompareStringA
CloseHandle
lstrcmpiA
MoveFileW
lstrcpynA
PurgeComm
CopyFileA

acledit

EditOwnerInfo
EditPermissionInfo
SedSystemAclEditor
EditAuditInfo

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 454KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy