c9e12cf54aa7620129c24013f503fad211e91fa0aba6fb158a9b23b5cf072454 | Triage

Submit
Reports

Overview

overview

Static

static

c9e12cf54a...54.exe

windows7-x64

c9e12cf54a...54.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c9e12cf54aa7620129c24013f503fad211e91fa0aba6fb158a9b23b5cf072454.exe

Resource

win7-20220901-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

c9e12cf54aa7620129c24013f503fad211e91fa0aba6fb158a9b23b5cf072454.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

c9e12cf54aa7620129c24013f503fad211e91fa0aba6fb158a9b23b5cf072454
Size

88KB
MD5

63a0a13eca0882e8b47f7f2712eb7b9a
SHA1

21a7a8a7eb62fe5d650d670e325fc13572b00cc8
SHA256

c9e12cf54aa7620129c24013f503fad211e91fa0aba6fb158a9b23b5cf072454
SHA512

b8dc46a352b915f415dcc3b65403aa0ff4450d67602df9b2f9b47ce6e7d2fda2a344f521e0ba9fea96bfafa23b221506e1a58634cbe9ff943f6500175efa02d9
SSDEEP

768:l2KO6ux54cnWreE+bnJsFz0pxKTe85FHRHkvbUoFJPmmVJh9cYPLm:DBuxFW4et0p+e85tVkvooBxc

Score

N/A

Malware Config

Signatures

Files

c9e12cf54aa7620129c24013f503fad211e91fa0aba6fb158a9b23b5cf072454
.exe windows x86

d3c7706ae0d18b837f1d354f14afd5ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetTickCount
GetFileSize
GetModuleHandleA
ResumeThread
GetThreadPriority
VirtualAlloc
GetProcAddress
WaitForSingleObject
RtlUnwind
GetCurrentProcess
TerminateProcess
HeapReAlloc
HeapAlloc
VirtualFree
LoadLibraryA
ExitProcess
HeapFree
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA

user32

DestroyWindow
LoadImageA
SetFocus
wsprintfA

ole32

CoInitialize

ws2_32

closesocket

winmm

mciSendCommandA
auxSetVolume

winscard

SCardCancel

Exports

Exports

?__ULT@@YAKK@Z

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.efi
Size: 4KB - Virtual size: 5B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy