9a262cf45df5badc39d39409daa9a14161cf0690df133cdf956e689e38dc7831 | Triage

Submit
Reports

Overview

overview

8

Static

static

9a262cf45d...31.exe

windows7-x64

8

9a262cf45d...31.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9a262cf45df5badc39d39409daa9a14161cf0690df133cdf956e689e38dc7831.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

9a262cf45df5badc39d39409daa9a14161cf0690df133cdf956e689e38dc7831.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

9a262cf45df5badc39d39409daa9a14161cf0690df133cdf956e689e38dc7831
Size

768KB
MD5

05946b3b5253f18e711e4d095c15aa82
SHA1

92ce47ee559c1fc12364c66be00a4aceeb771818
SHA256

9a262cf45df5badc39d39409daa9a14161cf0690df133cdf956e689e38dc7831
SHA512

efae761aa5ca2eda8b7f5003585d3e938e3fe8bb3b4df5a7578566eff0d4da4f3f4e53b47261bb7969002c2ad3de8f9ec78b1f39a6546540fd1b357bd5dbbe48
SSDEEP

12288:4iNqjvqxCuJZE5+GkGUDXfH4uR0evaRHtTtLZzu1qoRuQfRANBOq+bCYwPxhh7:k7q8uPBGkGYXzfv4BDu1q2ETERw97

Score

N/A

Malware Config

Signatures

Files

9a262cf45df5badc39d39409daa9a14161cf0690df133cdf956e689e38dc7831
.exe windows x86

7a64076acf64fe90d64c4dad771d9764

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
OpenEventW
HeapSize
CreateFileA
GetCommandLineW
CreateMutexA
GetFileSize
lstrlenA
SetLastError
GetVersion
GetStdHandle
CreateDirectoryW
ReleaseMutex
RemoveDirectoryW
FatalExit
MapViewOfFile
VirtualProtect
SetLastError
GetStartupInfoA
CreateFileMappingW
ReleaseSemaphore
DeleteFileA
ReleaseSemaphore
RemoveDirectoryW
HeapDestroy

cryptui

CryptUIWizBuildCTL
CryptUIStartCertMgr
WizardFree
CryptUIWizImport
DllUnregisterServer
DllRegisterServer
CryptUIWizExport
LocalEnroll
CryptUIDlgFreeCAContext
WizardFree
CryptUIDlgViewContext
CryptUIWizDigitalSign
LocalEnrollNoDS

iernonce

RunOnceExProcess
InitCallback
InitCallback
RunOnceExProcess

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy