01ed65026a39848ebff9e894f97b83452824f5a7c11a026b8d5de560b2ca30d6 | Triage

Submit
Reports

Overview

overview

5

Static

static

01ed65026a...d6.exe

windows7-x64

5

01ed65026a...d6.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

01ed65026a39848ebff9e894f97b83452824f5a7c11a026b8d5de560b2ca30d6.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

01ed65026a39848ebff9e894f97b83452824f5a7c11a026b8d5de560b2ca30d6.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

01ed65026a39848ebff9e894f97b83452824f5a7c11a026b8d5de560b2ca30d6
Size

115KB
MD5

0a83529ecdb8385ab015e92769ac64e1
SHA1

67cbf759a595dcee90e92a90b2d7f2156b8e3c1a
SHA256

01ed65026a39848ebff9e894f97b83452824f5a7c11a026b8d5de560b2ca30d6
SHA512

a84106a62456cb00fcfd43606b230035998c0079f37faeda751edbfe4f8ad9784f81862f6768f89df83c3e086535bad84564d287d9fb5226531222809374b0f2
SSDEEP

3072:VCTaKooucBUJusoCH4aVju5yYtuIG8a1nG+X:ATaKoHc0oCYui5yYzGbxGS

Score

N/A

Malware Config

Signatures

Files

01ed65026a39848ebff9e894f97b83452824f5a7c11a026b8d5de560b2ca30d6
.exe windows x86

45107e78b98decb7c1aaf624818838ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
GetCommandLineW
LoadLibraryExW
CreateFileA
GetComputerNameA
GetTickCount
GetTimeFormatW
LocalUnlock
CreateThread
lstrlenA
GetSystemTime
CloseHandle
FindVolumeClose
GetCurrentDirectoryW
UnmapViewOfFile
GetModuleHandleA
SetLastError
HeapCreate
ResetEvent
Sleep

user32

FillRect
DrawMenuBar
CreateWindowExA
GetKeyState
SetFocus
CheckRadioButton
GetComboBoxInfo
CallWindowProcA
IsWindow
DrawEdge
DispatchMessageA
GetDlgItem
GetDC

cryptui

WizardFree
LocalEnroll
CryptUIDlgSelectStoreA
CryptUIDlgSelectCA
CryptUIDlgCertMgr

hdwwiz.cpl

AddHardwareWizard

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy