9fc03742436b0d06db7aeb2c50efc80018a7860efd71b3143211f9523cc3a06f | Triage

Submit
Reports

Overview

overview

Static

static

9fc0374243...6f.exe

windows7-x64

3

9fc0374243...6f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9fc03742436b0d06db7aeb2c50efc80018a7860efd71b3143211f9523cc3a06f.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

9fc03742436b0d06db7aeb2c50efc80018a7860efd71b3143211f9523cc3a06f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

9fc03742436b0d06db7aeb2c50efc80018a7860efd71b3143211f9523cc3a06f
Size

59KB
MD5

a0cdcc2840529144ac7855154f9e0a8a
SHA1

0f7749eb2247a0bf5254b4468a7c0443dc9faa17
SHA256

9fc03742436b0d06db7aeb2c50efc80018a7860efd71b3143211f9523cc3a06f
SHA512

a8a54209fafdc7a5333fa5b4d02ecea8eea3b8d3da85d9cc6f360fb79a37f119202332498482716b6ab9003292255b0cc9246665f6b8e6c3bef2e8da735207fa
SSDEEP

1536:sM9r16XU1mCiJktHx3O6fQUZcVOShLHWln6IU4KkXjIQU:sikk8ktRQacEU2lnc/cEQU

Score

N/A

Malware Config

Signatures

Files

9fc03742436b0d06db7aeb2c50efc80018a7860efd71b3143211f9523cc3a06f
.exe windows x86

879aa4f031296c34420e7b0b570d09f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathCombineW
PathFindFileNameW
PathRemoveFileSpecW
StrCmpNIA
StrCmpNIW
SHDeleteKeyA
StrStrW
PathMatchSpecW
wnsprintfA
wvnsprintfA
PathFileExistsW

kernel32

GetModuleHandleA
GlobalUnlock
GetSystemTimeAsFileTime
EnterCriticalSection
GetAtomNameW
GetFileAttributesA
VirtualProtect
lstrcpyW
InitializeCriticalSection
lstrcatW
GlobalLock
GetEnvironmentVariableW
CreateThread
CreateEventW
CloseHandle
FindClose
lstrcatA
VirtualAlloc
UnmapViewOfFile
CreateMutexW

user32

GetForegroundWindow
CharLowerBuffA
GetClipboardData
GetIconInfo
EndDialog
GetWindowLongA
GetClassNameA
OpenDesktopA
LoadCursorA
SetThreadDesktop
OpenWindowStationA
CloseWindowStation
CloseDesktop

advapi32

RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
CryptDestroyHash
RegEnumKeyExA
RegQueryValueExA
CryptReleaseContext
GetUserNameW
CryptAcquireContextW
DuplicateTokenEx
CryptHashData
CryptCreateHash

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy