d48cb2ecc9bb4eebd7a31747545bf7f617100fbb98959c6449816cefc4fc9943 | Triage

Submit
Reports

Overview

overview

8

Static

static

d48cb2ecc9...43.exe

windows7-x64

8

d48cb2ecc9...43.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d48cb2ecc9bb4eebd7a31747545bf7f617100fbb98959c6449816cefc4fc9943.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

d48cb2ecc9bb4eebd7a31747545bf7f617100fbb98959c6449816cefc4fc9943.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d48cb2ecc9bb4eebd7a31747545bf7f617100fbb98959c6449816cefc4fc9943
Size

767KB
MD5

1128497e107fa81d6f6f410249854c3f
SHA1

7091ad881f0e07c8fe2af0a36bfbc560f2e3b754
SHA256

d48cb2ecc9bb4eebd7a31747545bf7f617100fbb98959c6449816cefc4fc9943
SHA512

febbcd4a7c743777f7429702f90c47e935c4b856856bf4bd12bd983bd537cd1b8e77288632a76438e5375e5ae8557addb2938befcdcdcbc4453162295d7f7014
SSDEEP

12288:9sIJbI+MoUurYLWrn3xsRMOSEypDWkxEn12037m83rxEleOqpBORbnxcIPAPzfIV:9sQsu6s3ASrno203y87CeOCYlhAPzglT

Score

N/A

Malware Config

Signatures

Files

d48cb2ecc9bb4eebd7a31747545bf7f617100fbb98959c6449816cefc4fc9943
.exe windows x86

e468e0f953216475638f6cbe0b9b11cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
CreateFileMappingW
RemoveDirectoryW
SetLastError
CreateMutexA
GetFileSize
GetVersion
Sleep
CreatePipe
GetStdHandle
LoadLibraryA
ReleaseSemaphore
ReleaseMutex
GetStartupInfoA
lstrlenA
CreateFileA
VirtualProtectEx
GetCommandLineW
RemoveDirectoryW
DeleteFileA
CreateDirectoryW
OpenEventW
HeapDestroy
HeapSize
WriteConsoleW

user32

FindWindowA
PeekMessageA
GetWindowLongA
DispatchMessageA
DestroyMenu
IsWindow
DestroyMenu
CreateIcon
GetSysColor
MessageBoxA
IsZoomed
GetClassInfoA
DrawTextW

feclient

FeClientInitialize
FeClientInitialize
FeClientInitialize
FeClientInitialize

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy