1a985a6b10809923cea0211ac349bd005a0fb2293bc3519988b106c6937c8c82 | Triage

Submit
Reports

Overview

overview

8

Static

static

1a985a6b10...82.exe

windows7-x64

8

1a985a6b10...82.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1a985a6b10809923cea0211ac349bd005a0fb2293bc3519988b106c6937c8c82.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

1a985a6b10809923cea0211ac349bd005a0fb2293bc3519988b106c6937c8c82.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

1a985a6b10809923cea0211ac349bd005a0fb2293bc3519988b106c6937c8c82
Size

749KB
MD5

154a80c707f1f0b3b41e14c2e11ef764
SHA1

36ae0fbdebdd1d03cc9ddbda8210eed1ee30ac3a
SHA256

1a985a6b10809923cea0211ac349bd005a0fb2293bc3519988b106c6937c8c82
SHA512

69457c461cadba7805cea388a62eeae164d67eb55003bb5e091185a454b95cee78e91ec7b13293712ff3f86764a318483eb1d2e0823848dd084e4dd3c2db7681
SSDEEP

12288:bUkcL7DfM49lxWfnbcM7gctuuqVyzTHYkdfBld726Myk48b4bbc2H/yNrI:gkcLv1HxWfnYIBuuq415lG28bIbc2HqS

Score

N/A

Malware Config

Signatures

Files

1a985a6b10809923cea0211ac349bd005a0fb2293bc3519988b106c6937c8c82
.exe windows x86

7c95bca9575df1d0251dcb8aad0ac141

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WaitForMultipleObjects
GetProcessHeap
GetFileType
AddAtomA
CreateSemaphoreW
HeapCreate
HeapFree
FindAtomA
WriteFile
GetDriveTypeW
GetModuleHandleA
RemoveDirectoryA
CreateDirectoryA
IsBadWritePtr
GetModuleFileNameA
RemoveDirectoryA
CreatePipe
SetVolumeLabelA
ClearCommBreak
GetCommandLineA
FindClose
DeleteAtom
SetEndOfFile
ExitThread

cryptui

WizardFree
LocalEnrollNoDS
WizardFree
CryptUIStartCertMgr
DllUnregisterServer
CryptUIDlgViewContext
CryptUIWizImport
LocalEnroll
CryptUIWizBuildCTL
CryptUIDlgFreeCAContext
DllRegisterServer
CryptUIWizDigitalSign
CryptUIWizExport

msrle32

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy