26d9b81f15f157c511d4c7444b8db6b7317b4d5699a66460a051318ccd212c7a | Triage

Submit
Reports

Overview

overview

Static

static

26d9b81f15...7a.exe

windows7-x64

3

26d9b81f15...7a.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

26d9b81f15f157c511d4c7444b8db6b7317b4d5699a66460a051318ccd212c7a.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

26d9b81f15f157c511d4c7444b8db6b7317b4d5699a66460a051318ccd212c7a.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

26d9b81f15f157c511d4c7444b8db6b7317b4d5699a66460a051318ccd212c7a
Size

145KB
MD5

0a5a6037b9e63e11988ee8910e969260
SHA1

124283d61ea524fefaf3827c33f177faab2d202a
SHA256

26d9b81f15f157c511d4c7444b8db6b7317b4d5699a66460a051318ccd212c7a
SHA512

91bc31c0c11e0a3915c0e992efd89a239f94cf49f4a64be6edfdd223e024d2285992b9da782778f45f85a0e887fa0cbb26337134c1483712b4694d534156dfff
SSDEEP

3072:ddqXX/ZVNpzDCnUu37OUwKI6ZnTppdeR+jQ4M7aRJ:dIZfpvLu37ObYlpiEfMmb

Score

N/A

Malware Config

Signatures

Files

26d9b81f15f157c511d4c7444b8db6b7317b4d5699a66460a051318ccd212c7a
.exe windows x86

41ec2c8c404762f724a66dd2bc7d2030

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetThreadDesktop
GetClipboardData
GetWindowTextA
GetIconInfo
MsgWaitForMultipleObjects
OpenDesktopA
GetMessageA
GetCursorPos
ToUnicode
CharLowerBuffA
GetDlgItemTextA
EndDialog
SendMessageA
GetWindowLongA
SetProcessWindowStation
OpenWindowStationA

kernel32

VirtualAlloc
FindFirstFileW
GetCommandLineA
CreateFileA
CreateProcessW
FindNextFileW
VirtualProtect
SetFileTime
FindClose
lstrlenW
GetFileTime
CreateEventW
SetEvent
GetSystemTimeAsFileTime
lstrcpyW
SetFilePointer
GetFileSize
CloseHandle
GetFileAttributesW

shlwapi

PathMatchSpecW
wnsprintfW
PathFindFileNameW
StrStrW
StrCmpNIA
SHDeleteKeyA
wvnsprintfW
wnsprintfA
PathRemoveFileSpecW
StrCmpNIW
wvnsprintfA

advapi32

CryptGetHashParam
RegEnumKeyExA
RegCreateKeyExA
DuplicateTokenEx
RegQueryValueExA
CryptHashData
RegSetValueExA
CryptDestroyHash
GetUserNameW

Sections

.text
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy