7ad33deee516091d23e2af48ecb7f47fc5defa3dcc36a0c3415c37d3c473923c | Triage

Submit
Reports

Overview

overview

9

Static

static

7ad33deee5...3c.exe

windows7-x64

9

7ad33deee5...3c.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

7ad33deee516091d23e2af48ecb7f47fc5defa3dcc36a0c3415c37d3c473923c.exe

Resource

win7-20220812-en

discovery evasion

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

7ad33deee516091d23e2af48ecb7f47fc5defa3dcc36a0c3415c37d3c473923c.exe

Resource

win10v2004-20220812-en

discovery evasion persistence

windows10-2004-x64

7 signatures

150 seconds

General

Target

7ad33deee516091d23e2af48ecb7f47fc5defa3dcc36a0c3415c37d3c473923c
Size

782KB
MD5

6fb8218e575ac40bf0c528440460fb10
SHA1

c90ee48e988d69afb084a029824dd26e21b491bf
SHA256

7ad33deee516091d23e2af48ecb7f47fc5defa3dcc36a0c3415c37d3c473923c
SHA512

08900ecf3a5fe608fc8541a40247a842c3ea582b1057191dbda49d23cf4d3d01dd39eb337040916482f2949f7190e867120bb8513dcfbced2c934a827c3d8f4b
SSDEEP

6144:IDfLQ+wk1hMzaNfdzk+d6VjZl/+ewKHKka7xKQk9Zw2jReMBdUESR7E9Fa:IDfLQybQ+Sl/+Ec7xKl9ZFleS0ona

Score

N/A

Malware Config

Signatures

Files

7ad33deee516091d23e2af48ecb7f47fc5defa3dcc36a0c3415c37d3c473923c
.exe windows x86

c52c3e94c577a7b06a11060497b68fcf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
FormatMessageA
FormatMessageW
FreeLibrary
GetCommandLineW
GetLastError
GetLocaleInfoW
GetModuleHandleW
GetProcAddress
InterlockedDecrement
InterlockedIncrement
IsDebuggerPresent
LeaveCriticalSection
GetModuleHandleA
LocalAlloc
LocalFree
LocalReAlloc
MultiByteToWideChar
OutputDebugStringA
WideCharToMultiByte
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenA
lstrlenW
GetProcessHeap
HeapAlloc
LoadLibraryA
Sleep
LoadLibraryW
VirtualAllocEx

user32

GetSysColor
LoadIconW
LoadStringW

gdi32

GetBkMode
GetColorSpace

advapi32

RegOpenKeyExA
RegQueryValueExA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 716KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy