5cf3958c97732e0546363b126d507b19816765af6ac273ba2ca78558ab67e170 | Triage

Submit
Reports

Overview

overview

Static

static

5cf3958c97...70.exe

windows7-x64

5cf3958c97...70.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5cf3958c97732e0546363b126d507b19816765af6ac273ba2ca78558ab67e170.exe

Resource

win7-20220901-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5cf3958c97732e0546363b126d507b19816765af6ac273ba2ca78558ab67e170.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

5cf3958c97732e0546363b126d507b19816765af6ac273ba2ca78558ab67e170
Size

394KB
MD5

1e3440f01d5f9d85ce0f2bbd1a551fd0
SHA1

9fcb69363231dee5f83cd2d8fb9833498d84ab37
SHA256

5cf3958c97732e0546363b126d507b19816765af6ac273ba2ca78558ab67e170
SHA512

55dfabc608f3a9700c6ed5205530f77c6d905c79dba30f23c92b55d86ac64820d3194dcd30476ba202a83747434dc9f2deccff2ca0a5491150992895a1d148b3
SSDEEP

12288:y/zNd9ZGh1fVqQt89e9fCzjPeJ/m9WY03xo0:cxzZGPfsQRkzjUCl0xo

Score

N/A

Malware Config

Signatures

Files

5cf3958c97732e0546363b126d507b19816765af6ac273ba2ca78558ab67e170
.exe windows x86

ac98b091edf0fe6b3cd9ed84e492fb57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
GetFileAttributesA
SetEvent
GetLastError
IsDebuggerPresent
CreatePipe
lstrcpyW
GetStdHandle
lstrlenW
GetPriorityClass
WriteConsoleW
GetCurrentDirectoryA
CopyFileW
WriteConsoleW
GetModuleHandleA
HeapCreate
ReleaseMutex
GetStartupInfoA
DisconnectNamedPipe
CloseHandle
ClearCommBreak

msftedit

RichComboBoxWndProc
RichEditWndProc
RichListBoxWndProc
SetCustomTextOutHandlerEx

shell32

SHGetSettings
ExtractIconA
DragAcceptFiles
StrChrA
DragQueryFileA
ShellAboutA
SHGetDiskFreeSpaceA
DuplicateIcon
SHFree
SHGetMalloc
DllUnregisterServer
ShellMessageBoxA
DragFinish

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 385KB - Virtual size: 880KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy