29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b | Triage

Submit
Reports

Overview

overview

9

Static

static

29593b00d9...0b.exe

windows7-x64

9

29593b00d9...0b.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b.exe

Resource

win7-20220812-en

discovery evasion persistence

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b
Size

579KB
MD5

af12af0b9c1796748217ea386dd661f0
SHA1

7f2f42fa67e004f4a7ff293d01809801224149ab
SHA256

29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b
SHA512

a0d9fd086dc2461ebee6e55bf8ba6b197b8939f498c98e299469ac27d83eda9b31eb7b5ecc1cd76ac5d01059fe2c162338b8238bad7e47ae7c17ea01678aae9f
SSDEEP

12288:hct/gm/+YBU58MaZhLduCbH/zuGEFpEEShc:hct/p9U5bajAqSBrEECc

Score

N/A

Malware Config

Signatures

Files

29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b
.exe windows x86

6bc58aacc08f877b916c3373d8b72e58

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
SetFocus
IsWindow
DrawIcon
DispatchMessageA
PostMessageW
IsDialogMessageA
IsZoomed
GetWindowLongA
LoadImageA
SetCursorPos
CreateWindowExA

cmdial32

AutoDialFunc
CmReConnect
InetDialHandler
CmCustomDialDlg

kernel32

GetLocalTime
FileTimeToSystemTime
CloseHandle
GetLastError
FindFirstFileA
ResetEvent
SetVolumeLabelA
SetCurrentDirectoryA
GetTickCount
GetDiskFreeSpaceA
GetConsoleAliasW
GetCurrentProcess
GetShortPathNameA
GetFileType
TlsGetValue
lstrcmpA
InterlockedExchange
GetStringTypeA
lstrcmpiA
GetVersionExA
CreateSemaphoreA
DeleteFileA
GetFullPathNameA
GetProcAddress
GetEnvironmentVariableW
CreateMutexA
VirtualQuery
GetCurrentDirectoryW
OpenMutexA
QueryDosDeviceA
GetModuleHandleA
GetLogicalDrives
OpenFileMappingA
GetStdHandle
CreateEventW

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 543KB - Virtual size: 612KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy