abacabfc7c6550bd8594fd0b758c3f890a01212fcc23d3a04b04f761684cc86e | Triage

Submit
Reports

Overview

overview

1

Static

static

abacabfc7c...6e.exe

windows7-x64

1

abacabfc7c...6e.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

abacabfc7c6550bd8594fd0b758c3f890a01212fcc23d3a04b04f761684cc86e.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

abacabfc7c6550bd8594fd0b758c3f890a01212fcc23d3a04b04f761684cc86e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

abacabfc7c6550bd8594fd0b758c3f890a01212fcc23d3a04b04f761684cc86e
Size

655KB
MD5

5e8a183a5fe1b0b36eaf6a7a10b30fa5
SHA1

9d23067187d8e40380580db7c3c64e9e8ba14fd0
SHA256

abacabfc7c6550bd8594fd0b758c3f890a01212fcc23d3a04b04f761684cc86e
SHA512

0d691b1f095a79deb1d44f3bcb09012d5b6b5b7907e2b03ef93bdefb0527ba12d9404fdfe3192171f144c2a82444bcdd2eeb4807a040638725c89c255b8386e3
SSDEEP

12288:xSK29O/FV+fwQRM/u4sAmz9BtiSPUYT8gGgrluz:cTM/FV+Iiuzc7MWGgYz

Score

N/A

Malware Config

Signatures

Files

abacabfc7c6550bd8594fd0b758c3f890a01212fcc23d3a04b04f761684cc86e
.exe windows x86

dd92f250feac0c5d2fa7b08d21f6d65f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSaveKeyA
RegRestoreKeyA
RegEnumKeyA
RegCreateKeyExA
RegReplaceKeyA
ReadEventLogW
RegUnLoadKeyA
LogonUserA
CryptSignHashA
ClearEventLogA
OpenEventLogW
RegOpenKeyA
RegDeleteValueW

shell32

SHGetFileInfoA
Shell_NotifyIconA
SHFree
ExtractIconW
ShellMessageBoxA
FindExecutableW
StrStrA
StrRChrA
DragQueryFileW
ShellAboutW
SHGetFolderPathA

shlwapi

UrlIsA
UrlCompareA
PathIsURLW
PathCommonPrefixA
UrlIsOpaqueW
UrlHashW
UrlIsNoHistoryW
PathCompactPathW
UrlGetPartW
PathCombineA
UrlGetLocationA
UrlEscapeA
UrlUnescapeW
PathStripPathW

untfs

Recover
Extend

cryptdll

CDLocateRng
MD5Init
MD5Update

kernel32

DeleteFileA
LoadLibraryA
GetProcAddress
GetCurrentProcess
GetCommandLineA
WaitForSingleObject
CreateWaitableTimerA
OpenJobObjectA
WaitNamedPipeW
InterlockedExchange
GetTickCount
OpenMutexA
FindNextFileA
MoveFileExW
LoadLibraryExW

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 566KB - Virtual size: 566KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy