704e061c8b860bea10048948fb3bc4e8a56feb1cf35340883b599dff496dc6f5 | Triage

Submit
Reports

Overview

overview

3

Static

static

704e061c8b...f5.exe

windows7-x64

1

704e061c8b...f5.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

704e061c8b860bea10048948fb3bc4e8a56feb1cf35340883b599dff496dc6f5.exe

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

704e061c8b860bea10048948fb3bc4e8a56feb1cf35340883b599dff496dc6f5.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

704e061c8b860bea10048948fb3bc4e8a56feb1cf35340883b599dff496dc6f5
Size

280KB
MD5

847e16406e9bb603a358cf013d9f2a10
SHA1

e757325de3cc453f94b74017d6feeb7c5c5bcb45
SHA256

704e061c8b860bea10048948fb3bc4e8a56feb1cf35340883b599dff496dc6f5
SHA512

6db3c0e9a082a6bbe827d586ff667c3f4300db4e703845d7a66d846736d9738d5683a8635fc423705c8222a0e09cbbaa7a66c3300bcc6424a476c29921367c64
SSDEEP

6144:wQTTYFBdf5yJYClQY4EleaLeS8BuintaseTQWvP1Q7ALBWzw:XTUniL34E488J2TG/c

Score

N/A

Malware Config

Signatures

Files

704e061c8b860bea10048948fb3bc4e8a56feb1cf35340883b599dff496dc6f5
.exe windows x86

8dd061b57c00c0b7a4df0c0624c2c110

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetCurrentProcess
GetLocaleInfoW
GetOEMCP
SetUnhandledExceptionFilter
SystemTimeToFileTime
MultiByteToWideChar
lstrcpyW
LoadLibraryA
GetProcessHeap
lstrlenW
GetTickCount
HeapFree
CloseHandle
GetSystemTimeAsFileTime
lstrcmpA
WideCharToMultiByte
GetLocalTime
FindResourceW
GetCurrentProcessId
QueryPerformanceCounter
HeapAlloc
SetLastError

fmifs

FormatEx
Format
ComputeFmMediaType
EnableVolumeCompression
DiskCopy
Chkdsk
Extend

w32topl

ToplScheduleCacheDestroy
ToplScheduleCreate
ToplSTHeapInit
ToplScheduleCacheCreate
ToplScheduleExportReadonly
ToplSTHeapDestroy
ToplSTHeapExtractMin
ToplScheduleDuration

Sections

.text
Size: 270KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nodata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy