fa93e71c8ea2958f10722954586afbbcbe3db99963efd5a69136fe99944653c0 | Triage

Submit
Reports

Overview

overview

8

Static

static

fa93e71c8e...c0.exe

windows7-x64

3

fa93e71c8e...c0.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fa93e71c8ea2958f10722954586afbbcbe3db99963efd5a69136fe99944653c0.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

fa93e71c8ea2958f10722954586afbbcbe3db99963efd5a69136fe99944653c0.exe

Resource

win10v2004-20220812-en

discovery persistence ransomware upx

windows10-2004-x64

16 signatures

150 seconds

General

Target

fa93e71c8ea2958f10722954586afbbcbe3db99963efd5a69136fe99944653c0
Size

107KB
MD5

086b95a3bd7ea45b53ccc696a0f36710
SHA1

770da846c7bfb3c38164013adcadee7427d355b3
SHA256

fa93e71c8ea2958f10722954586afbbcbe3db99963efd5a69136fe99944653c0
SHA512

6d8b00a86dcf1637ff013cd48b2990368f9440a839b929287286254dbf7e05fb453b01cd89dacd4037cf3e1c83fc4552a0125b856d9e6584de37a970b2264b21
SSDEEP

1536:sCGU+bie//eNJtreD0/LE9/qg1hUf8Im/UAoaAFmT4A8Pr9EheAWp2pQ5s44ZF:VGFOe/oJPDg1kkhAFNA8PraWp2K5OF

Score

N/A

Malware Config

Signatures

Files

fa93e71c8ea2958f10722954586afbbcbe3db99963efd5a69136fe99944653c0
.exe windows x86

0dd28c30dea0b829fe2addad09403d7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLOpenStreamA
IsLoggingEnabledA
CoInstall
GetClassFileOrMime
AsyncInstallDistributionUnit
IsValidURL

gdi32

SetICMMode
SetRelAbs
ResetDCW
StretchBlt
SetDIBColorTable
UpdateColors
SaveDC
TextOutW

shell32

StrCmpNA
SHFormatDrive
SHAppBarMessage

Sections

.text
Size: 24KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy