0737c6eef304212e76418992c9a0c14c1e2dee6a547deaaa2ff82fb970a418b8 | Triage

Submit
Reports

Overview

overview

8

Static

static

0737c6eef3...b8.exe

windows7-x64

8

0737c6eef3...b8.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

0737c6eef304212e76418992c9a0c14c1e2dee6a547deaaa2ff82fb970a418b8.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

0737c6eef304212e76418992c9a0c14c1e2dee6a547deaaa2ff82fb970a418b8.exe

Resource

win10v2004-20220901-en

persistence upx

windows10-2004-x64

6 signatures

150 seconds

General

Target

0737c6eef304212e76418992c9a0c14c1e2dee6a547deaaa2ff82fb970a418b8
Size

242KB
MD5

147690cde37137aac0e68ae38c7c8704
SHA1

a7b122b9f22bd1b0de01ac54b21c4e304805628f
SHA256

0737c6eef304212e76418992c9a0c14c1e2dee6a547deaaa2ff82fb970a418b8
SHA512

08dc274e7fed6f864da20d5b26295f60f39ebe13fa593b0a3b18dee6fed782686291498ab888288dd609b241bcd1546da68e87495e7af5eea63ac78509bf972f
SSDEEP

6144:bPlAx2B9FXVIYKqSh4+HqGy8bDpk5fZtFnCoaO2E:zl/B9FFIvayJy8S/tFnCon2E

Score

N/A

Malware Config

Signatures

Files

0737c6eef304212e76418992c9a0c14c1e2dee6a547deaaa2ff82fb970a418b8
.exe windows x86

6f0de43cb598c4e583490aabff2a303d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalDeleteAtom
GetPriorityClass
HeapCreate
SetErrorMode
EnterCriticalSection
InitAtomTable
GetStdHandle
lstrcpyA
RaiseException
GlobalAddAtomA
GetLastError
CloseHandle
SetConsoleCP
LockResource
GetTimeFormatA
LoadLibraryExA
VirtualProtect
GetACP
GlobalFree
GlobalUnlock
SizeofResource

user32

GetDC
GetWindowTextA
GetWindow
AnyPopup
BeginPaint
GetParent
GetActiveWindow
ReleaseDC
ValidateRect
GetFocus
EndPaint
GetWindowTextLengthA
ShowWindow
GetForegroundWindow
CloseWindow
GetClassInfoExA
GetClassNameA
DrawEdge
IsIconic

mprapi

MprAdminUserWrite
MprAdminUserOpen
MprAdminUserRead
MprAdminUserGetInfo
MprAdminUserClose

mapi32

MAPILogonEx

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 596KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy