abfa529221f7041a94a8db56078161604f8df6577512fe19fbe0b6ef6597ed71 | Triage

Submit
Reports

Overview

overview

8

Static

static

abfa529221...71.exe

windows7-x64

8

abfa529221...71.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

abfa529221f7041a94a8db56078161604f8df6577512fe19fbe0b6ef6597ed71.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

abfa529221f7041a94a8db56078161604f8df6577512fe19fbe0b6ef6597ed71.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

abfa529221f7041a94a8db56078161604f8df6577512fe19fbe0b6ef6597ed71
Size

483KB
MD5

652b92e6fa81da8cc487632878ecacc0
SHA1

404da7f61f9b3fc1e92670cb8cdcf16d006ebad7
SHA256

abfa529221f7041a94a8db56078161604f8df6577512fe19fbe0b6ef6597ed71
SHA512

6c3b0f044a8f4133bdd9f2e2d263a268a41a4725f9fed16de468429833b003b70d51c7b80eee8a9f0025ab76becc5403657c565ef0a23fb177c5222d241436dd
SSDEEP

6144:/DsPKwdwAJNeFADkE27WGDiwtyLZ/y8l1IwfZ8FunecuACGv8Kl:/Ds9zD1u5gZnllXecx3l

Score

N/A

Malware Config

Signatures

Files

abfa529221f7041a94a8db56078161604f8df6577512fe19fbe0b6ef6597ed71
.exe windows x86

efad9730bfc18211d9a039b3cd9bb2f2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
WaitForSingleObject
GetProcessHeap
GetCommandLineW
GetModuleHandleA
SetProcessShutdownParameters
ResumeThread
GetProcAddress
ExitProcess

user32

DefWindowProcW
ShowWindow
LoadStringW
RegisterClassExW
TranslateMessage
MessageBoxW
PostQuitMessage
GetMessageW
DestroyWindow
EndPaint
BeginPaint
UpdateWindow
DispatchMessageW
CreateWindowExW

ole32

CoInitialize

comctl32

ord17

powrprof

GetActivePwrScheme

ntdll

memcpy
vsprintf
DbgPrint
memset
RtlUnwind

Sections

.text
Size: 481KB - Virtual size: 481KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy