dcadeb05f391332cf827c80190fc6a1695778febde7be91981ec6c0545417e38 | Triage

Submit
Reports

Overview

overview

Static

static

球迷无�...��.exe

windows7-x64

球迷无�...��.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

球迷无需世界杯门票即可进入卡塔尔.exe

Resource

win7-20220812-en

gh0strat persistence rat

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

球迷无需世界杯门票即可进入卡塔尔.exe

Resource

win10v2004-20220812-en

gh0strat persistence rat

windows10-2004-x64

10 signatures

150 seconds

General

Target

dcadeb05f391332cf827c80190fc6a1695778febde7be91981ec6c0545417e38
Size

673KB
MD5

908f8867b61bd5e4b38294cdaa7e9f49
SHA1

c8126f7aec6add5eed420b367ddb45ad3cebaa75
SHA256

dcadeb05f391332cf827c80190fc6a1695778febde7be91981ec6c0545417e38
SHA512

98265f69a7d9da125de161cf4b55d064bf060a7cf125b68cf34e09330dc76a4fdea0d9740dd0a81896beda253bdbef049c173a3f2113118dab20e41479fc1eb8
SSDEEP

12288:mdA3CO12Llg8zfT19yol6SCK80NRGRFQR25DLW5HPle5F0RplUVaZL8t:wAN2LeWfvnlm0NABWLtRplMw+

Score

N/A

Malware Config

Signatures

Files

dcadeb05f391332cf827c80190fc6a1695778febde7be91981ec6c0545417e38
.rar
球迷无需世界杯门票即可进入卡塔尔.exe
.exe windows x86

4e357e8a21d47b28cb652444044bcf95

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetMenuBarInfo

gdi32

EnumObjects

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA

advapi32

SetThreadToken

shell32

DragAcceptFiles

shlwapi

PathRemoveExtensionA

oledlg

ord3

ole32

CreateFileMoniker

oleaut32

SystemTimeToVariantTime

Sections

.text
Size: 581KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 372KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy