c134a0ac2809efa669ab3e69597873916f629aca0581664159c4d101a6adc609 | Triage

Submit
Reports

Overview

overview

Static

static

c134a0ac28...09.exe

windows7-x64

1

c134a0ac28...09.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c134a0ac2809efa669ab3e69597873916f629aca0581664159c4d101a6adc609.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

10 seconds

Behavioral task

behavioral2

Sample

c134a0ac2809efa669ab3e69597873916f629aca0581664159c4d101a6adc609.exe

Resource

win10v2004-20220812-en

teslacrypt persistence ransomware

windows10-2004-x64

12 signatures

10 seconds

General

Target

c134a0ac2809efa669ab3e69597873916f629aca0581664159c4d101a6adc609
Size

328KB
MD5

77b3d8d5850b5735e58db6fc281f763f
SHA1

cd4813d5533f1894f8b6ece019c577f46d5fa4ec
SHA256

c134a0ac2809efa669ab3e69597873916f629aca0581664159c4d101a6adc609
SHA512

728f6691a97153a1159f2fcdc2fb7257fe38eef2a3b900ae1d44ad8235f943a015fc74b27839a0d1bca7aba7af10e19a785b3795571310c1a11711b23a20fd2f
SSDEEP

6144:F4MKA86q6kcKPqCAOFPmvSNQgstAw/u5jp2hnU4ZcRdN1Sgg68:F9x1KNRmKN+/Mk3eBU

Score

N/A

Malware Config

Signatures

Files

c134a0ac2809efa669ab3e69597873916f629aca0581664159c4d101a6adc609
.exe windows x86

86ff4de26ca2fa1f851d621a2cd4bdf0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

imm32

ImmDestroyContext

comdlg32

PageSetupDlgA
ChooseColorW

setupapi

SetupBackupErrorW

msvcrt

isalnum
memcpy
wcstoul

user32

GetClassNameA
GetShellWindow

kernel32

lstrlenW
GetCommandLineW
GetModuleHandleA
GetFirmwareEnvironmentVariableW
GetModuleFileNameW
GetTapeStatus
CreateThread
HeapWalk
DeleteTimerQueue
SetFirmwareEnvironmentVariableW

urlmon

CoInternetCombineUrl

pdh

PdhGetCounterInfoA

ntdsapi

DsFreeSpnArrayW

ole32

HMENU_UserUnmarshal

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CONST
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qr
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy