8d5b48e74fb956666450edb8853f23effc755ad8a33e6e0d2fee138d9612ef6b | Triage

Submit
Reports

Overview

overview

1

Static

static

8d5b48e74f...6b.exe

windows7-x64

1

8d5b48e74f...6b.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8d5b48e74fb956666450edb8853f23effc755ad8a33e6e0d2fee138d9612ef6b.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

8d5b48e74fb956666450edb8853f23effc755ad8a33e6e0d2fee138d9612ef6b.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8d5b48e74fb956666450edb8853f23effc755ad8a33e6e0d2fee138d9612ef6b
Size

221KB
MD5

91b0f48b9ae84f7411702b6635314d84
SHA1

11b82739de183d48d6cea594d2758ea66c0faffa
SHA256

8d5b48e74fb956666450edb8853f23effc755ad8a33e6e0d2fee138d9612ef6b
SHA512

cbe349b686fca30c396f00b9f925537a42a672c53e9969c1766b94a3f36a56fdbf4649b1afa0f70f008f98dc589f0c8a6fb357d26c48e02c04481d212180891f
SSDEEP

3072:/9SAzCNWolTTmkIEMpohgWfD4ThrJZ76uIK68SERStR22pfYUf1lGWwMnXQuuWht:VSAzoTmkXuWsTVxXnSptM2prQMnAOh

Score

N/A

Malware Config

Signatures

Files

8d5b48e74fb956666450edb8853f23effc755ad8a33e6e0d2fee138d9612ef6b
.exe windows x86

aa9c0f6bb9650a3fc43b48cd214a9c9a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreatePropertySheetPageW
CreateToolbarEx
DrawStatusTextW
CreatePropertySheetPageA
InitializeFlatSB
ord15
InitCommonControlsEx
ord13
ord16

shlwapi

StrChrW
StrChrA
StrCmpNA
StrChrIW

kernel32

GetStartupInfoA
GetModuleHandleA
GetProcAddress
Sleep
VirtualAllocEx

winspool.drv

ConfigurePortA
ConnectToPrinterDlg
GetPrinterW
DeletePrinter

aclui

ord2
ord1

wsnmp32

ord600
ord901
ord203
ord906
ord102
ord401
ord503
ord302
ord402
ord106
ord504
ord400

setupapi

SetupRenameErrorA
SetupQueueDeleteW
SetupFreeSourceListW
SetupQueueRenameW
SetupGetLineCountA

msvcrt

__p__fmode
_controlfp
_except_handler3
_XcptFilter
exit
_acmdln
__set_app_type
_exit
__p__commode
_adjust_fdiv
__getmainargs
__setusermatherr
_initterm

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 203KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy