815166fda99df70963e993b789c770e3e3aa0a09bfb55959ad94d1051252fba1 | Triage

Submit
Reports

Overview

overview

3

Static

static

815166fda9...a1.exe

windows7-x64

3

815166fda9...a1.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

815166fda99df70963e993b789c770e3e3aa0a09bfb55959ad94d1051252fba1.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

815166fda99df70963e993b789c770e3e3aa0a09bfb55959ad94d1051252fba1.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

815166fda99df70963e993b789c770e3e3aa0a09bfb55959ad94d1051252fba1
Size

199KB
MD5

a2bc223030071505a4afb2e16f1b954d
SHA1

a9e84dbd9240efe07a668532e4efb19d0f208210
SHA256

815166fda99df70963e993b789c770e3e3aa0a09bfb55959ad94d1051252fba1
SHA512

cddc9fb62752a50f91d9cffa4db3f6829f30803b97c9424ca47b45ed02e4fdaeb01b047f16d52d56d6f420ce607053c80db82454b853b4482a8f6f9276ad0e35
SSDEEP

3072:t4Kw0is75hKE0nSoiqtt87mciaCADSwCV64ErMyP9+DLPRf9SZfo8G0GPd/:J1iG+zn86HuSNV6poW94Nf2/CP

Score

N/A

Malware Config

Signatures

Files

815166fda99df70963e993b789c770e3e3aa0a09bfb55959ad94d1051252fba1
.exe windows x86

b267eb9c7e6e50ff5a80ae8eb6263e7d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetCurrentProcessId
GetModuleHandleW
DeleteFileA
GetTickCount
GetCurrentProcess
GlobalFindAtomW
GlobalFindAtomA
lstrcmpiA
GetCurrentThreadId
lstrcmpA
GetCommandLineW
SetLastError
GetProcessHeap
GetConsoleOutputCP
GetCommandLineA
lstrcmpiW
GetVersion
GetLastError
LoadLibraryW
GetCurrentThread
GetUserDefaultLangID
MulDiv
GetDriveTypeA
SetCurrentDirectoryA
GetACP
GetModuleHandleA
lstrlenA
Sleep
RemoveDirectoryA
lstrlenW
GetWindowsDirectoryA
DeleteFileW
IsDebuggerPresent
CopyFileA
GetOEMCP
GetThreadLocale
QueryPerformanceCounter
VirtualAlloc

user32

GetDesktopWindow
GetDC
CharNextA
GetSystemMetrics

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy