27ca849191dffb173ffc8da8d83b98cbf9271f4da6a64be83ccd86a7a3230449 | Triage

Submit
Reports

Overview

overview

8

Static

static

27ca849191...49.exe

windows7-x64

8

27ca849191...49.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

27ca849191dffb173ffc8da8d83b98cbf9271f4da6a64be83ccd86a7a3230449.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

27ca849191dffb173ffc8da8d83b98cbf9271f4da6a64be83ccd86a7a3230449.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

27ca849191dffb173ffc8da8d83b98cbf9271f4da6a64be83ccd86a7a3230449
Size

297KB
MD5

687d287bc44aaf713610f3c7eb8363b0
SHA1

3caaab233803aa1ce72c37b5054c0c15cb22c1f1
SHA256

27ca849191dffb173ffc8da8d83b98cbf9271f4da6a64be83ccd86a7a3230449
SHA512

e607acfd9a76f3d4b068352a90f2c17a30f8cd190187516b778433c8103ebf13d03539ec31a5c0dd5f279bd2edacc980b13e259df728fa5c667fc5f034f22f2e
SSDEEP

6144:2ByV/bRit9KgTjU9/vlF3S9gHIJXSyG3+6GezulBAS3R:dcKwo9/S9go9SyrbpBA2R

Score

N/A

Malware Config

Signatures

Files

27ca849191dffb173ffc8da8d83b98cbf9271f4da6a64be83ccd86a7a3230449
.exe windows x86

87dc18e97600f11fe1a3b35104479659

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapDestroy
lstrlenW
CopyFileA
FindAtomW
Sleep
GetLogicalDrives
HeapSize
GetDriveTypeW
GetStartupInfoA
GetFileAttributesA
ReleaseMutex
CloseHandle
LoadLibraryW
GetStringTypeW
GetPrivateProfileSectionW
VirtualProtect
ReadConsoleA
GetLastError
SetEvent
ReadConsoleA
ReadConsoleA

dsprop

ErrMsg
CheckADsError
MsgBox
ReportError
ErrMsg
MsgBox
FindSheet
FindSheet
MsgBox
ReportError
CheckADsError
FindSheet
ErrMsg

gpedit

DllGetClassObject
DllCanUnloadNow
ExportRSoPData
BrowseForGPO

Sections

.text
Size: 1024B - Virtual size: 789B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 266B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.export
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy