33ad029e77b063400dad75b06a3e5647bf60d39afa2741c994e35f1d8fd0b2d4 | Triage

Submit
Reports

Overview

overview

8

Static

static

33ad029e77...d4.exe

windows7-x64

8

33ad029e77...d4.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

33ad029e77b063400dad75b06a3e5647bf60d39afa2741c994e35f1d8fd0b2d4.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

33ad029e77b063400dad75b06a3e5647bf60d39afa2741c994e35f1d8fd0b2d4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

33ad029e77b063400dad75b06a3e5647bf60d39afa2741c994e35f1d8fd0b2d4
Size

749KB
MD5

10306cd9ba0019be09b6b071b0adad75
SHA1

0b7f5fd04cc8cbab16d9f548f9508ee8efa4f705
SHA256

33ad029e77b063400dad75b06a3e5647bf60d39afa2741c994e35f1d8fd0b2d4
SHA512

658675788d26214a848c2e3ea443b5c3e80e12ee0c89451b8f99cb44f911044ba67958e1039e24c8cbc4dfbecbc2052b4ff43480a1e9b759b7d882131e7af4ad
SSDEEP

12288:yIFCQ0CYZq068QiGfs1CNT35kaM8KQbMf6tZqJz0gfgAskzbAMzHj6oIgc6trmIo:TEQ0CYLQiGfjTpK82CzqTwkogHj6Cnt

Score

N/A

Malware Config

Signatures

Files

33ad029e77b063400dad75b06a3e5647bf60d39afa2741c994e35f1d8fd0b2d4
.exe windows x86

ad39f86dac9b0eda314ace1f7b96230e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
ResetEvent
RemoveDirectoryA
WriteFile
SetVolumeLabelA
ExitThread
GetDriveTypeW
VirtualProtectEx
FindAtomA
RemoveDirectoryA
FindClose
GetVersion
GetSystemTime
CreateSemaphoreW
FindClose
ReleaseMutex
CreateDirectoryA
GetCommandLineA
SetEvent
IsBadWritePtr
HeapFree
SetStdHandle
CreatePipe
GetFileType
GetModuleHandleA

uxtheme

SetWindowTheme
GetThemeColor
CloseThemeData
GetThemeTextMetrics
IsThemeActive
GetThemeRect
GetWindowTheme
DrawThemeEdge
GetThemeTextExtent
GetThemeSysSize
OpenThemeData
CloseThemeData
DrawThemeBackground

pstorsvc

Start
Start
Start
Start

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy