f78128794ed99f86acb9b5fee70a82c0eb049a44a3120c1d9396e64ed5840352 | Triage

Submit
Reports

Overview

overview

8

Static

static

f78128794e...52.exe

windows7-x64

8

f78128794e...52.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f78128794ed99f86acb9b5fee70a82c0eb049a44a3120c1d9396e64ed5840352.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

f78128794ed99f86acb9b5fee70a82c0eb049a44a3120c1d9396e64ed5840352.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

f78128794ed99f86acb9b5fee70a82c0eb049a44a3120c1d9396e64ed5840352
Size

768KB
MD5

003ed28ce80a16d9a100b3173615ae2a
SHA1

a3b8574fe0901aafb4a92e82c968695a30d9810e
SHA256

f78128794ed99f86acb9b5fee70a82c0eb049a44a3120c1d9396e64ed5840352
SHA512

6d8074aace1dcb7fd06da9be35741098c3505fd420b1149cd263c87df73ba73021704444d2b9a05f879addfebafa199adc3105a8d2cb1c4a7bd048c4f5ec28b1
SSDEEP

12288:OxrXY3fin90kKUR2laseMiOW9MM8SN2HxSZsygeb+INDvPlXOE4dpCidZHZakVwf:O2G9tLMXeMil4SN2YT9FDyhZakQ

Score

N/A

Malware Config

Signatures

Files

f78128794ed99f86acb9b5fee70a82c0eb049a44a3120c1d9396e64ed5840352
.exe windows x86

afaf4e75477ab1658c541f584867190d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
GetFileSize
SetLastError
lstrlenW
CreateDirectoryW
GetStdHandle
SetLastError
RemoveDirectoryW
RemoveDirectoryW
GetVersion
GetStartupInfoA
CreateFileMappingW
FatalExit
LoadLibraryA
HeapDestroy
OpenEventW
CreateFileA
ReleaseSemaphore
MapViewOfFile
DeleteFileA
ReleaseSemaphore
VirtualProtect
ReleaseMutex
CreateMutexA
GetCommandLineW

cryptui

LocalEnrollNoDS
CryptUIWizImport
DllRegisterServer
CryptUIWizDigitalSign
CryptUIWizBuildCTL
WizardFree
DllUnregisterServer
CryptUIWizExport
CryptUIDlgViewContext
CryptUIStartCertMgr
WizardFree
LocalEnroll
CryptUIDlgFreeCAContext

iernonce

InitCallback
InitCallback
RunOnceExProcess
RunOnceExProcess

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy