49bf37ab4fbe23cd95c98998cf1292179f6d51ff2d2c4618c8ad96bf9ad5399c | Triage

Submit
Reports

Overview

overview

8

Static

static

49bf37ab4f...9c.exe

windows7-x64

8

49bf37ab4f...9c.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

49bf37ab4fbe23cd95c98998cf1292179f6d51ff2d2c4618c8ad96bf9ad5399c.exe

Resource

win7-20220901-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

49bf37ab4fbe23cd95c98998cf1292179f6d51ff2d2c4618c8ad96bf9ad5399c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

49bf37ab4fbe23cd95c98998cf1292179f6d51ff2d2c4618c8ad96bf9ad5399c
Size

299KB
MD5

60ec9576640380abd63ab7c2ec72e0f7
SHA1

a16abbb4e7551dd03142072ec48a3f1a991f70aa
SHA256

49bf37ab4fbe23cd95c98998cf1292179f6d51ff2d2c4618c8ad96bf9ad5399c
SHA512

25edb20f115b6f52c06944b9e4fe0d1ad791bb9958dd9d228ef015e5f096c8015fa8f11db0a02bdab8119e88b3a0a3df2345d9ff0fdae6738214311b361a36ab
SSDEEP

6144:d6dmWn6GVFhecE5ICB384bpYw+CXxvtinxphbTXFWq2i:Iv6G5ecE5r3yC2nXhM

Score

N/A

Malware Config

Signatures

Files

49bf37ab4fbe23cd95c98998cf1292179f6d51ff2d2c4618c8ad96bf9ad5399c
.exe windows x86

5b79a349e70000f040875b01b7e976cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCommandLineA
GetFileAttributesA
FindClose
FindResourceA
RemoveDirectoryA
HeapSize
GetProcessHeap
GetExitCodeThread
IsBadWritePtr
CreateMailslotW
SetLastError
GetDriveTypeW
GetModuleHandleA
MapViewOfFile
ResetEvent
GetLocaleInfoA
VirtualProtect
CancelIo
IsValidCodePage
GetStdHandle
CreateDirectoryA

user32

GetWindowLongW
LoadImageW
SetCursor
PostMessageW
GetWindowTextW
PeekMessageA
IsDialogMessageA
wsprintfA
GetCapture
SetFocus
DispatchMessageA
LoadCursorA
DestroyMenu

ipsmsnap

DllCanUnloadNow
DllUnregisterServer
DllGetClassObject
DllRegisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.import
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy