010a1563c48eb91b4e3461a0ef8db63f3c8f1f218daf4d93cd8a1d644d3edb51 | Triage

Submit
Reports

Overview

overview

8

Static

static

010a1563c4...51.exe

windows7-x64

8

010a1563c4...51.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

010a1563c48eb91b4e3461a0ef8db63f3c8f1f218daf4d93cd8a1d644d3edb51.exe

Resource

win7-20220901-en

discovery evasion persistence

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

010a1563c48eb91b4e3461a0ef8db63f3c8f1f218daf4d93cd8a1d644d3edb51.exe

Resource

win10v2004-20220812-en

discovery evasion persistence

windows10-2004-x64

9 signatures

150 seconds

General

Target

010a1563c48eb91b4e3461a0ef8db63f3c8f1f218daf4d93cd8a1d644d3edb51
Size

288KB
MD5

93d317e1c26f55b783381619eab4b02f
SHA1

372a5ecbb3d4dd3c4af51e77a30dfa629256c28c
SHA256

010a1563c48eb91b4e3461a0ef8db63f3c8f1f218daf4d93cd8a1d644d3edb51
SHA512

f2551bd76a270d3db0289512ff8510fe9cfdcd4374a7727a0eda32b27ad69e3a885cbb6998533d0e05ad530fb69cd4d181fef8293ede0b161efdd27c7e7d6138
SSDEEP

6144:/EN3ErnhkrohtvSYuSKdchhkBIt1WF9fp:pnqrohyFchhkBItsF

Score

N/A

Malware Config

Signatures

Files

010a1563c48eb91b4e3461a0ef8db63f3c8f1f218daf4d93cd8a1d644d3edb51
.exe windows x86

5838e7cc467faed79e5448df6b5bc30e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
HeapAlloc
GetCurrentProcess
CreateNamedPipeA
WaitForSingleObject
lstrcpynA
VirtualProtectEx
GetTimeFormatW
LoadLibraryW
GetOEMCP
GetModuleHandleA
MapViewOfFile

shell32

SHGetFileInfoA
SHBindToParent
SHChangeNotify
ShellAboutA
SHGetDiskFreeSpaceA
DragQueryPoint
SHCreateShellItem
DragAcceptFiles
SHFree
FindExecutableA
DragFinish
DllUnregisterServer
SHGetDesktopFolder
DuplicateIcon
ShellMessageBoxA
SHGetDataFromIDListA
StrChrA

user32

CreateDesktopW
IsZoomed
DrawStateA
CharToOemA
IsMenu
InsertMenuA
PostMessageW
wsprintfA
PeekMessageW
DialogBoxParamA
LoadMenuW
LoadIconA
FlashWindow
GetClassLongA
GetPropW

clbcatq

CoRegCleanup
SetSetupOpen

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy