5fab51f4fae723eb2654fdb67f3077dc408c99601ae6df81c4ca64ddee489d9a | Triage

Submit
Reports

Overview

overview

Static

static

5fab51f4fa...9a.exe

windows7-x64

5fab51f4fa...9a.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5fab51f4fae723eb2654fdb67f3077dc408c99601ae6df81c4ca64ddee489d9a.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

5fab51f4fae723eb2654fdb67f3077dc408c99601ae6df81c4ca64ddee489d9a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

5fab51f4fae723eb2654fdb67f3077dc408c99601ae6df81c4ca64ddee489d9a
Size

220KB
MD5

30f7e8662610b7960977be8a8a8106b8
SHA1

563fb64383d7e0259cade4d00cbb9b2ba9c15d15
SHA256

5fab51f4fae723eb2654fdb67f3077dc408c99601ae6df81c4ca64ddee489d9a
SHA512

5291ea1c5bba8d8c810e2172e055d1bf4aa69081a942c433da2678b11b141c598e33ec6cd0b6b720a898788c8bec942dd60eab1f49fdf9dbb0a47c1ec6a89a41
SSDEEP

6144:0WKkC5LlsGDSXuWEJqOHMLy9u0kUmkANJtv:0ekLlsGGuwOH2O2Z9

Score

N/A

Malware Config

Signatures

Files

5fab51f4fae723eb2654fdb67f3077dc408c99601ae6df81c4ca64ddee489d9a
.exe windows x86

66a4f92a13a32ce7e33b82b0cef366aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
TlsAlloc
GetTickCount
FindAtomW
lstrlenA
GetTimeFormatW
OpenFileMappingW
UnmapViewOfFile
MapViewOfFile
FormatMessageW
GetUserDefaultLCID
Sleep
CloseHandle
GetLastError
CreateFileMappingW
LoadLibraryA
LocalAlloc
FoldStringW
GetAtomNameW
FreeLibrary
LoadLibraryW
GetSystemDirectoryW
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThreadId
TlsGetValue
GetProcAddress
GetModuleHandleW
TlsSetValue
CreateMutexW
ReleaseMutex
WaitForSingleObject
lstrlenW

ole32

CoRegisterMallocSpy
StringFromGUID2
StringFromIID

shlwapi

PathFileExistsW
PathAppendW
PathRemoveFileSpecW
PathFindExtensionA

version

GetFileVersionInfoA

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy