a26f332d6e90114ea8af327522c1385e5aec6a75cc2ad78e1c1840d3eaf3c8ea | Triage

Submit
Reports

Overview

overview

8

Static

static

a26f332d6e...ea.exe

windows7-x64

8

a26f332d6e...ea.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a26f332d6e90114ea8af327522c1385e5aec6a75cc2ad78e1c1840d3eaf3c8ea.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a26f332d6e90114ea8af327522c1385e5aec6a75cc2ad78e1c1840d3eaf3c8ea.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

10 signatures

150 seconds

General

Target

a26f332d6e90114ea8af327522c1385e5aec6a75cc2ad78e1c1840d3eaf3c8ea
Size

358KB
MD5

5d7f76ea4becfc02d2ed9bc31e23a770
SHA1

146605dd5c7b9b8b631167c711697545c05a65de
SHA256

a26f332d6e90114ea8af327522c1385e5aec6a75cc2ad78e1c1840d3eaf3c8ea
SHA512

c57efdf3056a970477f4622692ae2131a8017d59fcfb7a127207b49d16c4bcf70cc8f29b7617dfea946da35364e05f2249842b9c2d36ee889c549e6cdb8b244c
SSDEEP

6144:q01Yk7BnS1reexa5IMl7elkTLPHOqwGzKYz5IeF61KAQkvgprf:31bnSUexa5NjTDuqwGzK0IUpkvgp7

Score

N/A

Malware Config

Signatures

Files

a26f332d6e90114ea8af327522c1385e5aec6a75cc2ad78e1c1840d3eaf3c8ea
.exe windows x86

04aa69d680dba794e451ec6087826cdd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetAtomNameA
InterlockedExchange
lstrlenA
ResumeThread
GetACP
HeapCreate
GetModuleHandleA
LockResource
SetLastError
WaitForSingleObject
LoadLibraryExA
GetConsoleCP
PeekConsoleInputA
GetUserDefaultLCID
GetSystemTime
VirtualProtect
TlsGetValue
LocalLock
GetCommandLineA
GlobalSize

user32

GetDC
ReleaseDC
FrameRect
CreateIcon
DrawTextA
GetCursorPos
GetParent
GetFocus
ShowWindow
FillRect
EndPaint
DragDetect
wsprintfA
BeginPaint
AnyPopup
SetForegroundWindow
GetTitleBarInfo
GetClassNameA
GetWindow

ntshrui

DllGetClassObject
GetNetResourceFromLocalPathA
GetLocalPathFromNetResourceA
DllCanUnloadNow
SetFolderPermissionsForSharing

wshtcpip

WSHIoctl

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy