c5f92e67bf65b6223900bea4e8342fe350a807e79e0e0e6d6b868985eddbfc70 | Triage

Submit
Reports

Overview

overview

8

Static

static

c5f92e67bf...70.exe

windows7-x64

8

c5f92e67bf...70.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c5f92e67bf65b6223900bea4e8342fe350a807e79e0e0e6d6b868985eddbfc70.exe

Resource

win7-20220901-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

c5f92e67bf65b6223900bea4e8342fe350a807e79e0e0e6d6b868985eddbfc70.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

12 signatures

150 seconds

General

Target

c5f92e67bf65b6223900bea4e8342fe350a807e79e0e0e6d6b868985eddbfc70
Size

155KB
MD5

a311fc65b7d7e4bba6948217b7f67d20
SHA1

c2bcd6d70f0c51bf0c09bf2c72d90a019726849e
SHA256

c5f92e67bf65b6223900bea4e8342fe350a807e79e0e0e6d6b868985eddbfc70
SHA512

d9b9717d3369ad30f09f10d208304652b0dfe8b3ba159659105b0957696bb426b6764b5dc2c016d554d163651c9eec9b146050bf952fe3a37f5c9cfbfc3578b5
SSDEEP

3072:lmFQHGmffQzLlEk7TfpdkG6/29ldWRlLtxwIvAdp6Xl7qQqz/GEONy0n5:YFQHGmf+NVdPFvd2tAdEqQyayo

Score

N/A

Malware Config

Signatures

Files

c5f92e67bf65b6223900bea4e8342fe350a807e79e0e0e6d6b868985eddbfc70
.exe windows x86

58525dca3204a5809d81752f2a89245a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
GetModuleHandleA
SuspendThread
GetTickCount
HeapReAlloc
CloseHandle
HeapCreate
GetStdHandle
GlobalUnlock
InterlockedExchange
LocalSize
CompareFileTime
GetAtomNameA
GetVersion
VirtualProtect
WaitForSingleObject
lstrlenA
LoadLibraryExA
WaitForMultipleObjects
GetCommandLineA
GetSystemDefaultLangID

gdi32

Ellipse
BeginPath
CreateFontA
GetMetaRgn
DeleteDC
GetStringBitmapA
EqualRgn
CreatePalette
Escape
GetFontData
EndPath
EngLineTo
FloodFill
GetMetaFileA
GetRgnBox
GetTextColor
AbortPath
DeleteObject
GdiFlush
CreateICA

winmm

auxSetVolume
PlaySoundA
OpenDriver
auxGetVolume
CloseDriver

secur32

AddCredentialsA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 780KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy