173d38436de5be37901f100fc1c22b548c9e3a9d9ee497d752b6daaeb899f902 | Triage

Submit
Reports

Overview

overview

3

Static

static

173d38436d...02.exe

windows7-x64

3

173d38436d...02.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

173d38436de5be37901f100fc1c22b548c9e3a9d9ee497d752b6daaeb899f902.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

173d38436de5be37901f100fc1c22b548c9e3a9d9ee497d752b6daaeb899f902.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

173d38436de5be37901f100fc1c22b548c9e3a9d9ee497d752b6daaeb899f902
Size

56KB
MD5

4343c85c1ee0dc7db223188ca3a380e8
SHA1

2780b0f8b132fcd47ba00be7c058f66392e61763
SHA256

173d38436de5be37901f100fc1c22b548c9e3a9d9ee497d752b6daaeb899f902
SHA512

897acfb118d8a84d920520e0e96bd7984677b1f2f7a9ae4a894f924c9c57f26bcb1008f4358fe5d64ca86e8415d9400206d9d551b65e58a753858e0b6444b0ad
SSDEEP

1536:hU8WshYROQt/oqZqcrXc4hClAJIgLz7ncN:hh3U5/1Z7rXjhClAD7cN

Score

N/A

Malware Config

Signatures

Files

173d38436de5be37901f100fc1c22b548c9e3a9d9ee497d752b6daaeb899f902
.exe windows x86

617aba6aea4a89048933805ef3859feb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesExA
CreateProcessA
Sleep
WinExec
GetTempFileNameA
SetFileTime
GetTickCount
GetModuleFileNameA
GetLastError
GetSystemDirectoryA
DeleteFileA
MoveFileExA
DeviceIoControl
CloseHandle
CreateFileA
GetWindowsDirectoryA
GetTempPathA

advapi32

ControlService
OpenServiceA
StartServiceA
CreateServiceA
CloseServiceHandle
OpenSCManagerA
DeleteService

msvcrt

strrchr
_strlwr
strlen
fclose
fwrite
fopen
strncpy
fread
strcat
strcpy
sprintf
memset
_stricmp
rand
srand
_snprintf

shlwapi

SHSetValueA
SHDeleteValueA

setupapi

SetupIterateCabinetA

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 992B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy