486a2bdfa2dd622979fd2d2d062887cd5f5aac39ea1115a8b8a5c08d1ac89c3f | Triage

Submit
Reports

Overview

overview

8

Static

static

486a2bdfa2...3f.exe

windows7-x64

8

486a2bdfa2...3f.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

486a2bdfa2dd622979fd2d2d062887cd5f5aac39ea1115a8b8a5c08d1ac89c3f.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

486a2bdfa2dd622979fd2d2d062887cd5f5aac39ea1115a8b8a5c08d1ac89c3f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

486a2bdfa2dd622979fd2d2d062887cd5f5aac39ea1115a8b8a5c08d1ac89c3f
Size

749KB
MD5

094f65fff36537e3d5d3328e699bd2eb
SHA1

7b0d67463dc23015e27db05400654e0f0f847724
SHA256

486a2bdfa2dd622979fd2d2d062887cd5f5aac39ea1115a8b8a5c08d1ac89c3f
SHA512

82109784b29c858284d2b5931b0010f25b8a0644cd96f52c2b40cfab67de474057712a07567456a8c38072d63dadeb6b912ce6d476b7ab98bce5e2a914173558
SSDEEP

12288:/Zlty7QiKZ8SlmX4cbv3usywPKsNzurUWyhTfc/tKrg6Owmk0Ocm9Xr0oI5a6viP:xXy7Q98CQusywyozueI/o/OM0+0oIs0P

Score

N/A

Malware Config

Signatures

Files

486a2bdfa2dd622979fd2d2d062887cd5f5aac39ea1115a8b8a5c08d1ac89c3f
.exe windows x86

a782fd0e1d0c7b04053bfa0bbf747c7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetModuleFileNameA
HeapCreate
GetDriveTypeW
ClearCommBreak
CloseHandle
HeapFree
CreateSemaphoreA
GetProcessHeap
WriteFile
RemoveDirectoryA
IsBadWritePtr
GetFileType
SetEndOfFile
FatalExit
DeleteAtom
WaitForMultipleObjects
GetCommandLineA
SetVolumeLabelA
AddAtomA
CreatePipe
RemoveDirectoryA
CreateDirectoryA
FindAtomA
FindClose

cryptui

LocalEnrollNoDS
LocalEnroll
CryptUIDlgViewContext
CryptUIWizBuildCTL
CryptUIStartCertMgr
CryptUIWizDigitalSign
CryptUIDlgFreeCAContext
WizardFree
WizardFree
CryptUIWizImport
CryptUIWizExport
DllRegisterServer
DllUnregisterServer

msisip

MsiSIPIsMyTypeOfFile
MsiSIPIsMyTypeOfFile
MsiSIPIsMyTypeOfFile
MsiSIPIsMyTypeOfFile

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy