b98f16999cd58caf6a3b6dea2d827b30ef572d4f7cd02f03dbbf582052b7fa31 | Triage

Submit
Reports

Overview

overview

8

Static

static

b98f16999c...31.exe

windows7-x64

8

b98f16999c...31.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b98f16999cd58caf6a3b6dea2d827b30ef572d4f7cd02f03dbbf582052b7fa31.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

b98f16999cd58caf6a3b6dea2d827b30ef572d4f7cd02f03dbbf582052b7fa31.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b98f16999cd58caf6a3b6dea2d827b30ef572d4f7cd02f03dbbf582052b7fa31
Size

749KB
MD5

0be155d83e44ec42f1a35c295930845c
SHA1

31eab43218d65ab6b10a24ae9a6392c4101c7170
SHA256

b98f16999cd58caf6a3b6dea2d827b30ef572d4f7cd02f03dbbf582052b7fa31
SHA512

fe31460eef7d03ff637585b0dadbd9dc8b8eb9d80cd6d61dbc35aef417addb3837d95bdc4855b58a7786ea554084604bfc3bbaa58e92cf13b4ca10afd6590a93
SSDEEP

12288:/SfpNInylnmUokUjEK10eoX3x8P5ZpnT0bpi7wORttnVwYIn8Nrvj31C59u6oQGp:qfpNInyFmUpUjExeSx8P5ZJ2GbxVr3rP

Score

N/A

Malware Config

Signatures

Files

b98f16999cd58caf6a3b6dea2d827b30ef572d4f7cd02f03dbbf582052b7fa31
.exe windows x86

2c3c1d659fa3ddfdba87277062515d86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommBreak
GetCommandLineA
FatalExit
CloseHandle
HeapCreate
DeleteAtom
WaitForMultipleObjects
WriteFile
SetVolumeLabelA
HeapFree
GetModuleHandleA
GetFileType
FindClose
CreatePipe
GetDriveTypeW
GetProcessHeap
SetEndOfFile
CreateDirectoryA
RemoveDirectoryA
FindAtomA
RemoveDirectoryA
AddAtomA
CreateSemaphoreA
IsBadWritePtr
GetModuleFileNameA

cryptui

CryptUIWizImport
DllUnregisterServer
DllRegisterServer
CryptUIStartCertMgr
CryptUIDlgFreeCAContext
CryptUIWizDigitalSign
WizardFree
LocalEnrollNoDS
CryptUIWizExport
CryptUIDlgViewContext
CryptUIWizBuildCTL
LocalEnroll
WizardFree

msrle32

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy