c1ac6f194aea92b79856a6f6ec65ae06e170196ef64c01af65ea718b00c046d5 | Triage

Submit
Reports

Overview

overview

8

Static

static

c1ac6f194a...d5.exe

windows7-x64

8

c1ac6f194a...d5.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c1ac6f194aea92b79856a6f6ec65ae06e170196ef64c01af65ea718b00c046d5.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

c1ac6f194aea92b79856a6f6ec65ae06e170196ef64c01af65ea718b00c046d5.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

c1ac6f194aea92b79856a6f6ec65ae06e170196ef64c01af65ea718b00c046d5
Size

495KB
MD5

390cc868507f18b98eb2ab2a62c2a855
SHA1

32dee8b461a22a1de220c1aa6793a4ccda343ec0
SHA256

c1ac6f194aea92b79856a6f6ec65ae06e170196ef64c01af65ea718b00c046d5
SHA512

a1d89a2a07d2ec33e4b939176d06914efda42b9f5249e6891bc6d91972e192210b8ed49e3bdda92b0c4309ae6f867ea35a0e794f00cadcb64330f40dffe16d8c
SSDEEP

12288:sWIU4UzpDJLbArJuEz+Wj9aiMmvXLYLbZyz:7z2daN7Y7+4

Score

N/A

Malware Config

Signatures

Files

c1ac6f194aea92b79856a6f6ec65ae06e170196ef64c01af65ea718b00c046d5
.exe windows x86

dc019bf3afebd0c1e726ecaaec70cf12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
lstrcmpiA
GetTickCount
SetLastError
GetPrivateProfileStringW
GetStdHandle
GetExitCodeProcess
lstrcmpiA
CreateNamedPipeA
lstrcmpiA
GetBinaryTypeA
TlsFree
GetDriveTypeA
GetLogicalDrives
lstrcmpiA
FileTimeToLocalFileTime
GetModuleHandleA
EndUpdateResourceA
IsValidCodePage
lstrcmpiA
CreateWaitableTimerW
lstrcatW
HeapCreate

objsel

DllRegisterServer
DllUnregisterServer
DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 488KB - Virtual size: 488KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 614B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy