0b4520bfc8a4a38113ff6311665fc31d0059c15aa9dc9ec46161527dcefa9dd5 | Triage

Submit
Reports

Overview

overview

Static

static

0b4520bfc8...d5.exe

windows7-x64

0b4520bfc8...d5.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0b4520bfc8a4a38113ff6311665fc31d0059c15aa9dc9ec46161527dcefa9dd5.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

0b4520bfc8a4a38113ff6311665fc31d0059c15aa9dc9ec46161527dcefa9dd5.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

0b4520bfc8a4a38113ff6311665fc31d0059c15aa9dc9ec46161527dcefa9dd5
Size

196KB
MD5

1cc62401bd295d52fa254a127a90f188
SHA1

0e22d0a2d39f7371b405b9385130e68a26c338f2
SHA256

0b4520bfc8a4a38113ff6311665fc31d0059c15aa9dc9ec46161527dcefa9dd5
SHA512

69984a545cba115c56710519892ae2a9f2a6fd3b1fb5907b0e9973d158b65112f8962e697ee44c0675b29e797b935029a98293d2107cd41771b36ae4e2a6cad3
SSDEEP

6144:ev359nUB8kedjLSyvQyAXwvy09PP2+xPT3vx:evkB8kehmVBgd5r/x

Score

N/A

Malware Config

Signatures

Files

0b4520bfc8a4a38113ff6311665fc31d0059c15aa9dc9ec46161527dcefa9dd5
.exe windows x86

703b79c6cb7b566b1ea5d06939bd229d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SwitchToThisWindow
ShowCaret
GetDlgCtrlID
MapDialogRect
EnumWindows
IsZoomed
SetWindowPos
GetMenuItemCount
InvalidateRect
MessageBoxA
GetShellWindow
EqualRect
GetKeyboardLayoutNameW
RemovePropW
GetMenuItemID
AdjustWindowRect

shlwapi

PathIsDirectoryEmptyA

kernel32

FindCloseChangeNotification
GetThreadContext
IsDBCSLeadByte
WaitForSingleObjectEx
AddAtomA
OpenSemaphoreW
EnumResourceLanguagesA
FindResourceExW

gdi32

GetTextCharsetInfo
ExtTextOutW
GetRgnBox
Ellipse
ExcludeClipRect
ScaleWindowExtEx
TextOutA

Exports

Exports

LoadMutantExW@8
ShowTimerNew@4
DeleteWidthExA@12
IncrementExpressionExA@16
FreePointer@12

Sections

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.cud
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy