b547103a504812414dc2b1ed84a9b7f0b5f81a15ab866212ac9576b0a1dcc246 | Triage

Submit
Reports

Overview

overview

8

Static

static

b547103a50...46.exe

windows7-x64

8

b547103a50...46.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b547103a504812414dc2b1ed84a9b7f0b5f81a15ab866212ac9576b0a1dcc246.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

b547103a504812414dc2b1ed84a9b7f0b5f81a15ab866212ac9576b0a1dcc246.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

9 signatures

150 seconds

General

Target

b547103a504812414dc2b1ed84a9b7f0b5f81a15ab866212ac9576b0a1dcc246
Size

322KB
MD5

a1def74fcde113bade46d549e69d7283
SHA1

c0e45855d07bc7be90403564c04a5a2b9c80eefe
SHA256

b547103a504812414dc2b1ed84a9b7f0b5f81a15ab866212ac9576b0a1dcc246
SHA512

543d143a2e72bd4477891c231ab4a2ea91d0e2917ddb722a1881e7410f0f30ab636cee21a6169c2dfe140ae58927acf85c587f4272450220a6062cabd107aac6
SSDEEP

6144:XMDxe4nb2sHMFMSgUiv6NTpe1OfsIL+kn32DYKzoiONv4pk:XkxZKsHMFMvUPeOVyk3G27N7

Score

N/A

Malware Config

Signatures

Files

b547103a504812414dc2b1ed84a9b7f0b5f81a15ab866212ac9576b0a1dcc246
.exe windows x86

23ffe496b0184617c11e48bc8af2706a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtAllocateVirtualMemory
NtAdjustPrivilegesToken
_itoa

rpcrt4

NdrDllCanUnloadNow
CStdStubBuffer_Disconnect
NdrDllGetClassObject
CStdStubBuffer_Invoke
NdrOleAllocate
CStdStubBuffer_AddRef
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_DebugServerQueryInterface
IUnknown_Release_Proxy
CStdStubBuffer_Connect
IUnknown_AddRef_Proxy
CStdStubBuffer_QueryInterface
IUnknown_QueryInterface_Proxy
NdrOleFree
CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerRelease
NdrCStdStubBuffer_Release

Sections

.text
Size: 278KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy