b1b7ff125fb21111f2490db3ff94d44523e2fd7aa5edf9342c646abafe198f15 | Triage

Submit
Reports

Overview

overview

3

Static

static

b1b7ff125f...15.exe

windows7-x64

1

b1b7ff125f...15.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b1b7ff125fb21111f2490db3ff94d44523e2fd7aa5edf9342c646abafe198f15.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b1b7ff125fb21111f2490db3ff94d44523e2fd7aa5edf9342c646abafe198f15.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b1b7ff125fb21111f2490db3ff94d44523e2fd7aa5edf9342c646abafe198f15
Size

301KB
MD5

81ed8608641ee76b445252d5555da530
SHA1

ef85a596717b4de095d2264c35066ba482340810
SHA256

b1b7ff125fb21111f2490db3ff94d44523e2fd7aa5edf9342c646abafe198f15
SHA512

496d02ba55a1b594dee64379d6a8375fcadcaca03acd1036f0782eb1015a8321ff77ae5f069a309301f826be1cb43e693b9fe7f8c51b9fbef6cbafe4ce74ec97
SSDEEP

6144:QqmtMzWWKjc8jTCtqypO5IvVz5m5/SwYJrwmwzvQXCW:Q/MzTD8KtnO5Ih5m5/SRuWC

Score

N/A

Malware Config

Signatures

Files

b1b7ff125fb21111f2490db3ff94d44523e2fd7aa5edf9342c646abafe198f15
.exe windows x86

8fded71bd2680f6e12d29ff7c2beba70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapSize
ResetEvent
RemoveDirectoryA
SetLastError
GetFileAttributesA
GetProcessHeap
GetDriveTypeW
ReadConsoleW
WriteFile
CreateDirectoryA
CreateMailslotA
CancelIo
GetStdHandle
SetLocalTime
GetLocaleInfoA
VirtualProtect
IsBadWritePtr
GetModuleHandleA
GetCommandLineA
DeleteFileA
ReleaseMutex

user32

GetCapture
GetWindowTextW
GetWindowLongW
SetFocus
LoadCursorA
DestroyMenu
PostMessageA
wsprintfA
PeekMessageA
DrawIcon
GetCaretPos
SetCursor
DispatchMessageA

filemgmt

DllUnregisterServer
DllGetClassObject
DllRegisterServer
DllRegisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imp
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy