bb9b180107d637b4e999d116f5516be389be8f038b0b2aca8856d33c6a72b6f5 | Triage

Submit
Reports

Overview

overview

8

Static

static

bb9b180107...f5.exe

windows7-x64

8

bb9b180107...f5.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bb9b180107d637b4e999d116f5516be389be8f038b0b2aca8856d33c6a72b6f5.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

bb9b180107d637b4e999d116f5516be389be8f038b0b2aca8856d33c6a72b6f5.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

bb9b180107d637b4e999d116f5516be389be8f038b0b2aca8856d33c6a72b6f5
Size

809KB
MD5

0ca5362f813cc10f23640d76677ece25
SHA1

1a9761e8f9f3d3137050556ea690f7e19c510563
SHA256

bb9b180107d637b4e999d116f5516be389be8f038b0b2aca8856d33c6a72b6f5
SHA512

b294531850dcf4016f1a61193ccf38376e51353c5104ebb652dd70309615ae8f3bc5a27628988ba6502fc8ac940336e7e78fbb51f9fe75dd9aa85f977faf4f2d
SSDEEP

12288:FvN5FHKz5jt5aXFuMHFQVqbcSPOWsqjmtnoOE9ZXmI0SoRgCXWN6Z5:F1/0vaFmVqASPTs3tnPQwaUr

Score

N/A

Malware Config

Signatures

Files

bb9b180107d637b4e999d116f5516be389be8f038b0b2aca8856d33c6a72b6f5
.exe windows x86

780120d29b06089ef563189ed695e60b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryW
SetLocalTime
VirtualProtect
SetLastError
GetModuleFileNameA
DeleteFileA
CreateSemaphoreW
GetStartupInfoA
GlobalFree
lstrlenA
GetProcessHeap
SetLastError
SetEvent
CreateFileA
CloseHandle
CreateMutexA
OpenSemaphoreA
CreateHardLinkW
GetTickCount
GetFileAttributesW
WriteConsoleA
Sleep
HeapSize
GetFileSize
LoadLibraryA

dmocx

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

wmdmps

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllUnregisterServer

wininet

FtpCommandW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy