5644cb38c40e09e0a470b97a4c9a12550f143ac3f64d4e2e722e29bc5ecfe373 | Triage

Submit
Reports

Overview

overview

8

Static

static

5644cb38c4...73.exe

windows7-x64

8

5644cb38c4...73.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5644cb38c40e09e0a470b97a4c9a12550f143ac3f64d4e2e722e29bc5ecfe373.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

5644cb38c40e09e0a470b97a4c9a12550f143ac3f64d4e2e722e29bc5ecfe373.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

General

Target

5644cb38c40e09e0a470b97a4c9a12550f143ac3f64d4e2e722e29bc5ecfe373
Size

218KB
MD5

8466f475ef1b0378ec5ae6b03e01b4de
SHA1

b407ab5ccb0ba344701a4514ea947007a528943c
SHA256

5644cb38c40e09e0a470b97a4c9a12550f143ac3f64d4e2e722e29bc5ecfe373
SHA512

f676b06e17700b47c054084b41c2349d62ddaad752e74b01720f82adb58694e853405b372681fb92b55cf6a13af00f334ba4503b3094f9ccf3efbaa4e70c4670
SSDEEP

6144:2sCgl1VFyJRnOTbJL1fvE9sBvNq2nUi7:vjVFyJROTti9OlquUa

Score

N/A

Malware Config

Signatures

Files

5644cb38c40e09e0a470b97a4c9a12550f143ac3f64d4e2e722e29bc5ecfe373
.exe windows x86

2ea273cbd5f998e61aeec1fe83308256

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetVersionExW
GetOEMCP
TlsGetValue
TlsSetValue
GetModuleHandleW
TlsFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
HeapReAlloc
GetCommandLineA
ExitProcess
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetProcAddress
TerminateProcess
SetUnhandledExceptionFilter
TlsAlloc
SetLastError

ole32

CoDeactivateObject
CoUninitialize

advapi32

RegQueryValueExA
RegOpenKeyExA
LsaSetDomainInformationPolicy
RegSetValueExA
RegCreateKeyExA
RegCloseKey

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 916B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy