c749283dfb1aba0fe4015dd3c961f4702299808409829f1cff7aedb349952f20 | Triage

Submit
Reports

Overview

overview

8

Static

static

c749283dfb...20.exe

windows7-x64

8

c749283dfb...20.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c749283dfb1aba0fe4015dd3c961f4702299808409829f1cff7aedb349952f20.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

c749283dfb1aba0fe4015dd3c961f4702299808409829f1cff7aedb349952f20.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

c749283dfb1aba0fe4015dd3c961f4702299808409829f1cff7aedb349952f20
Size

749KB
MD5

121a5de9cd3de6637a2d956d7773b130
SHA1

2d1f8eca737214cd098ce504099bacd5f9950465
SHA256

c749283dfb1aba0fe4015dd3c961f4702299808409829f1cff7aedb349952f20
SHA512

5501230f5586748e2ecb4b05c6e3a2e3b143e5ce8930fadfbbf4a6c553be1dd2f4357fc5a98c031d94594a5ccca625dd5be265ab1a18669b2d444bc9c7614f9f
SSDEEP

12288:82VDaDEHqjAm+8BGWe+4ztQlny9QINP2kCykHY++Gzom3VRZVP:8oDaD5jAhsGWexGlnClCyxG0i

Score

N/A

Malware Config

Signatures

Files

c749283dfb1aba0fe4015dd3c961f4702299808409829f1cff7aedb349952f20
.exe windows x86

04662b041d4e6b530d149214cdd3ff65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
CreateEventW
GetCommandLineA
VirtualProtectEx
CreateFileA
WriteFile
CreateDirectoryW
CreateMailslotW
GetFileType
ReleaseMutex
HeapFree
ResetEvent
OpenEventA
RemoveDirectoryA
DeleteFileA
GetModuleHandleA
WriteConsoleW
FindClose
SetStdHandle
Sleep
FindClose
lstrlenA
GetLastError
CreateFileMappingW
RemoveDirectoryA

cryptui

CryptUIDlgViewContext
DllUnregisterServer
LocalEnrollNoDS
CryptUIStartCertMgr
WizardFree
DllRegisterServer
WizardFree
CryptUIWizImport
CryptUIWizExport
CryptUIWizDigitalSign
LocalEnroll
CryptUIWizBuildCTL
CryptUIDlgFreeCAContext

dbnmpntw

ConnectionClose
ConnectionClose
ConnectionClose
ConnectionClose

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy