b056220a6b200fb691b65c0a43a9f1fb7b3f3750405cf0618f284d418db34697 | Triage

Submit
Reports

Overview

overview

1

Static

static

b056220a6b...97.exe

windows7-x64

1

b056220a6b...97.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b056220a6b200fb691b65c0a43a9f1fb7b3f3750405cf0618f284d418db34697.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

b056220a6b200fb691b65c0a43a9f1fb7b3f3750405cf0618f284d418db34697.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

b056220a6b200fb691b65c0a43a9f1fb7b3f3750405cf0618f284d418db34697
Size

36KB
MD5

0797093e5ad3564ba598c84cf7e59c80
SHA1

23d89679facf5fe7118e02b89cf113c5690e0a77
SHA256

b056220a6b200fb691b65c0a43a9f1fb7b3f3750405cf0618f284d418db34697
SHA512

070337a42e1d5617d256abdf4fd7e450b6be79be516b1fc75d9e8bce8ff5ca9c3c84871f1f6e31f70f9d1a84f0be9c1deb71531b238e56c413052c2c63fd4000
SSDEEP

768:hJfPq7W2dM6Caxj/eFA65ka12mo4nnFvj8yarcrSeYX:+KIM6Caxj/j0P2R4ZoyaorSe

Score

N/A

Malware Config

Signatures

Files

b056220a6b200fb691b65c0a43a9f1fb7b3f3750405cf0618f284d418db34697
.exe windows x86

3cea20f6b662094aa22039afefa13b29

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetCurrentProcessId
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
LocalFree
GetModuleHandleA
HeapSetInformation
UnhandledExceptionFilter

msvcrt

_XcptFilter
__wgetmainargs
_wcsicmp
_cexit
_exit
_controlfp
_except_handler4_common
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_amsg_exit
_initterm
exit

msi

ord201
ord173

ole32

CoUninitialize
CoCreateInstance
CoInitializeEx

sfc

SfcIsFileProtected

shell32

SHGetPathFromIDListW

shlwapi

PathFindExtensionW

advapi32

RegCloseKey
RegCreateKeyExW
RegSetKeyValueW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy