a1397344966681827588af04eb848e6d406657b6ddf1669e80c7c20fc86bbcbc | Triage

Submit
Reports

Overview

overview

8

Static

static

a139734496...bc.exe

windows7-x64

8

a139734496...bc.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a1397344966681827588af04eb848e6d406657b6ddf1669e80c7c20fc86bbcbc.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a1397344966681827588af04eb848e6d406657b6ddf1669e80c7c20fc86bbcbc.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a1397344966681827588af04eb848e6d406657b6ddf1669e80c7c20fc86bbcbc
Size

747KB
MD5

0d37159fe351e6c48f17dfda3c06708e
SHA1

b36fe9e57bf1637809b22a2387ad4134320c2719
SHA256

a1397344966681827588af04eb848e6d406657b6ddf1669e80c7c20fc86bbcbc
SHA512

70a647d5f4116fcea500ebc1b7cbb449c175462ad1d78d71feacf1eee2337077da349067b4a6ba032e3c36e34720699c7bd96a6ce159c516118db786b4b1e056
SSDEEP

12288:vG3rwJocU9JdzNiXjRMmHHOgnFCZso+j1aWxSIxuQ2DJ8yC9qXbd85BRH3CIVfxI:+3rXzdZiXjOtgosoKJxSIgLDra5BhN5I

Score

N/A

Malware Config

Signatures

Files

a1397344966681827588af04eb848e6d406657b6ddf1669e80c7c20fc86bbcbc
.exe windows x86

a9bd928d502e131cc28742ed1b556d52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
ResetEvent
SetEvent
WriteConsoleW
ExitProcess
CreateMutexA
SetLastError
ClearCommBreak
VirtualAllocEx
GetTickCount
CancelIo
RemoveDirectoryA
ReleaseMutex
DeleteFileW
OpenProcess
GetModuleHandleA
CreateFileA
GetStartupInfoW
HeapSize
GetFileAttributesA
GetEnvironmentVariableW

user32

GetClassInfoA
GetWindowLongA
CallWindowProcW
GetDC
FindWindowA
GetCursorInfo
FillRect
PeekMessageA
DispatchMessageW
GetSysColor
GetDC
GetDC
DispatchMessageW

mciseq

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy