abad211b4f974b491233f10e5ac8b0b29fee3ff47258b6805a353c146ca97c8b | Triage

Submit
Reports

Overview

overview

8

Static

static

abad211b4f...8b.exe

windows7-x64

8

abad211b4f...8b.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

abad211b4f974b491233f10e5ac8b0b29fee3ff47258b6805a353c146ca97c8b.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

abad211b4f974b491233f10e5ac8b0b29fee3ff47258b6805a353c146ca97c8b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

abad211b4f974b491233f10e5ac8b0b29fee3ff47258b6805a353c146ca97c8b
Size

768KB
MD5

2c0dcedefcd94d0bb7e71605347f7e6a
SHA1

743b59bb100fef9651619fe20c7abc0736629102
SHA256

abad211b4f974b491233f10e5ac8b0b29fee3ff47258b6805a353c146ca97c8b
SHA512

a06c21d7103b4397a40a8259a5675564b5c5d39db912901a51a6822c5ce18a87b89f8450b0a8e34d2589ecb5cdd741d8b8440d66fd481665724f4d78751ee4bf
SSDEEP

24576:X0uR+BU1QQSfOpvpiDuzrJtmiBwyefueUbIW+:4U1VmOpvpiDuJMiReII

Score

N/A

Malware Config

Signatures

Files

abad211b4f974b491233f10e5ac8b0b29fee3ff47258b6805a353c146ca97c8b
.exe windows x86

744672b03a9f1f3059bf090062ed68f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
GetTickCount
DeleteFileW
CreateFileA
FatalExit
HeapSize
MapViewOfFile
GetStartupInfoA
CreateDirectoryW
CancelIo
GetProcessHeap
ReleaseSemaphore
LoadLibraryA
GetStdHandle
ReadConsoleA
SetLastError
RemoveDirectoryW
GetFileSize
CreateHardLinkA
ReleaseSemaphore
ReleaseMutex
SetLastError
VirtualProtect
RemoveDirectoryW
HeapDestroy

uxtheme

GetWindowTheme
GetThemeColor
GetThemeTextExtent
GetThemeTextMetrics
IsThemeActive
GetThemeSysSize
DrawThemeBackground
CloseThemeData
SetWindowTheme
OpenThemeData
CloseThemeData
DrawThemeEdge
GetThemeBool

msports

ComDBReleasePort
ComDBOpen
ComDBClaimPort
ComDBClose

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy