82fb588842c657f82de006afc91034fe0ed9f5d16a8e005b4f134a33b4cfdb09 | Triage

Submit
Reports

Overview

overview

8

Static

static

82fb588842...09.exe

windows7-x64

8

82fb588842...09.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

82fb588842c657f82de006afc91034fe0ed9f5d16a8e005b4f134a33b4cfdb09.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

82fb588842c657f82de006afc91034fe0ed9f5d16a8e005b4f134a33b4cfdb09.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

10 signatures

150 seconds

General

Target

82fb588842c657f82de006afc91034fe0ed9f5d16a8e005b4f134a33b4cfdb09
Size

329KB
MD5

650152bc43f93d4ceeeb2e097a42aa66
SHA1

29750f9c92a0722186a28078744e27f8c81be37d
SHA256

82fb588842c657f82de006afc91034fe0ed9f5d16a8e005b4f134a33b4cfdb09
SHA512

d2340948143c90b55aba43942a14f1fcc15352523e2de93870aa4eac4a236f3e37ddac99097538bc4038df73b50804f71952d62f3948ab2ffe1bf6f033ac251b
SSDEEP

6144:Yj7U4p7bZX+m9Y0yQirofhSALlYfCkgn3/U6CZsS4B4WSOvARapZMw:I7UA9X+IhPvvohWxARgO

Score

N/A

Malware Config

Signatures

Files

82fb588842c657f82de006afc91034fe0ed9f5d16a8e005b4f134a33b4cfdb09
.exe windows x86

c40766679128a13130335c1cedf218ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
LoadLibraryExA
GetConsoleDisplayMode
LocalSize
GetConsoleCP
CompareFileTime
lstrlenA
GetVersion
GetAtomNameA
HeapReAlloc
GetSystemDefaultLangID
GlobalUnlock
WaitForMultipleObjects
SuspendThread
InterlockedExchange
GetTickCount
VirtualProtect
GetCommandLineA
GetModuleHandleA
CloseHandle
HeapCreate

gdi32

EndPath
GetRgnBox
CreateFontA
FloodFill
AbortPath
EqualRgn
CreatePalette
GetStringBitmapA
DeleteObject
GetTextColor
GetFontData
GetMetaRgn
CreateICA
EngLineTo
Escape
Ellipse
DeleteDC
GetMetaFileA
BeginPath

rastapi

AddPorts
PortClose
DeviceListen
DeviceConnect
DeviceDone

dhcpsapi

DhcpAddServer

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy