b96325fab52c10fd776d24e33133f62c210c9e89a408253f29baf6e33f4eb78a | Triage

Submit
Reports

Overview

overview

8

Static

static

b96325fab5...8a.exe

windows7-x64

8

b96325fab5...8a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b96325fab52c10fd776d24e33133f62c210c9e89a408253f29baf6e33f4eb78a.exe

Resource

win7-20220812-en

adware persistence stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

b96325fab52c10fd776d24e33133f62c210c9e89a408253f29baf6e33f4eb78a.exe

Resource

win10v2004-20220812-en

adware persistence stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

b96325fab52c10fd776d24e33133f62c210c9e89a408253f29baf6e33f4eb78a
Size

198KB
MD5

603dd25e9460127f22ec1fa1f7041e40
SHA1

0a4384ebd07f3ba4be316dcd5af0d565401472b6
SHA256

b96325fab52c10fd776d24e33133f62c210c9e89a408253f29baf6e33f4eb78a
SHA512

5c20b6ad1cd44af93d417daf1865544d09a1ddf88853607af650193cfd3575566ed93b663ea32e98594bd5433abda3e36efb5e812eea8c853b12b5ddfe16edef
SSDEEP

3072:rK+mrh42ya4kcFoWZHlWzzXGOJlBpPlPlU8Va0ch+7dUchB/p:r6rh42xcTHlrMXRlPk+7dd

Score

N/A

Malware Config

Signatures

Files

b96325fab52c10fd776d24e33133f62c210c9e89a408253f29baf6e33f4eb78a
.exe windows x86

f9cb13eaf34ee76d9832e3edb319c9e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA
SHGetSpecialFolderPathA

kernel32

lstrcpyA
lstrcatA
WriteFile
Sleep
SizeofResource
LockResource
LoadResource
CloseHandle
CreateFileA
ExitProcess
FindResourceA
GetModuleHandleA

advapi32

RegSetValueExA
RegOpenKeyExA
RegCloseKey

Sections

.text
Size: 1024B - Virtual size: 734B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 542B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy