56d5fbfd152645e6b919e979414807db3d464b9ab02d4caff1bcef6f993951ee | Triage

Submit
Reports

Overview

overview

8

Static

static

56d5fbfd15...ee.exe

windows7-x64

8

56d5fbfd15...ee.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

56d5fbfd152645e6b919e979414807db3d464b9ab02d4caff1bcef6f993951ee.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

56d5fbfd152645e6b919e979414807db3d464b9ab02d4caff1bcef6f993951ee.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

56d5fbfd152645e6b919e979414807db3d464b9ab02d4caff1bcef6f993951ee
Size

311KB
MD5

1093fc0678ebc2b9842af65067408e24
SHA1

41530a8362f592a1766019b31ade7e6f04854bab
SHA256

56d5fbfd152645e6b919e979414807db3d464b9ab02d4caff1bcef6f993951ee
SHA512

b31254319519e0fc30bf8a1dd3a7b0fa611299a0a672c07d8843efaaf8ccff4a3d9c25ed25d74cf2d83e5429e6493d1263c878c19bdea1659062045ca616e42e
SSDEEP

6144:NIanldRhczw0VN52Pq6rFrQ0A6ikHk9YJBWwXv+ZvPJbjULYdmRfzwYg:1l7hczw0Vaq6tzikHHBL+ZvPJvU/zBg

Score

N/A

Malware Config

Signatures

Files

56d5fbfd152645e6b919e979414807db3d464b9ab02d4caff1bcef6f993951ee
.exe windows x86

9882e96a7bbfba30e0602f7f19b11bba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateEventW
SetLastError
lstrlenA
ResumeThread
LoadLibraryW
GetPrivateProfileIntW
GetPrivateProfileSectionA
GetProcessHeap
GetCurrentThread
SuspendThread
FindAtomA
GetVolumePathNameA
GetStringTypeW
CreateEventW
DeleteFileA
HeapFree
GetDriveTypeA
CreateEventW
TlsGetValue
VirtualProtect
GetProcessVersion

clbcatq

SetupOpen
SetupOpen
CheckMemoryGates
ComPlusMigrate
ComPlusMigrate
DllGetClassObject
SetupOpen
DllGetClassObject
CheckMemoryGates
CheckMemoryGates
CheckMemoryGates
ComPlusMigrate
CheckMemoryGates

d3dramp

g_RampOld_BeadTbl
RampOldTri
RampOldTri
g_RampOld_BeadTbl

Sections

.text
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 11KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 305KB - Virtual size: 305KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 455B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy