ab3482f54fa4a25c7ea09f78b31e2e23c71767b45776acde239620fdb4b532f5 | Triage

Submit
Reports

Overview

overview

Static

static

ab3482f54f...f5.exe

windows7-x64

ab3482f54f...f5.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ab3482f54fa4a25c7ea09f78b31e2e23c71767b45776acde239620fdb4b532f5.exe

Resource

win7-20220812-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab3482f54fa4a25c7ea09f78b31e2e23c71767b45776acde239620fdb4b532f5.exe

Resource

win10v2004-20220812-en

evasion persistence spyware stealer trojan

windows10-2004-x64

14 signatures

150 seconds

General

Target

ab3482f54fa4a25c7ea09f78b31e2e23c71767b45776acde239620fdb4b532f5
Size

490KB
MD5

08ae2d9afdf2e7282cd1098598341a80
SHA1

d5051e42e2e466079a866cdf785747a988e0d61f
SHA256

ab3482f54fa4a25c7ea09f78b31e2e23c71767b45776acde239620fdb4b532f5
SHA512

a226a6dccfda3b569460260e1cf3427167139906d02f058ec17c85c16351ee1a42ca851a8b7d332787fba0627cd1b55844052f2b5be2f190994dd60b3b9f13fb
SSDEEP

12288:RlqEXOMJIOQsv4C5cKh4IDQ2SemZUTzv:RH+MJIHe4BK54epT

Score

N/A

Malware Config

Signatures

Files

ab3482f54fa4a25c7ea09f78b31e2e23c71767b45776acde239620fdb4b532f5
.exe windows x86

526aea375c1d4df39a676788d215f001

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageA

shell32

SHCreateProcessAsUserW

advapi32

RegisterServiceCtrlHandlerExA

kernel32

WaitForDebugEvent
GetSystemDefaultUILanguage
GetCurrentThreadId
GetCommandLineA

Sections

.text
Size: 487KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 247B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy