f2787b27913cb1b1addc0200c4afa00c643a6b38cca3c4213ec1f16b7e331697 | Triage

Submit
Reports

Overview

overview

8

Static

static

f2787b2791...97.exe

windows7-x64

8

f2787b2791...97.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f2787b27913cb1b1addc0200c4afa00c643a6b38cca3c4213ec1f16b7e331697.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

f2787b27913cb1b1addc0200c4afa00c643a6b38cca3c4213ec1f16b7e331697.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

f2787b27913cb1b1addc0200c4afa00c643a6b38cca3c4213ec1f16b7e331697
Size

9KB
MD5

025ebe37cbd1df010258595ae75a20e7
SHA1

a991f680d7f96b3ef3ab5dd814ed5e1162831ed7
SHA256

f2787b27913cb1b1addc0200c4afa00c643a6b38cca3c4213ec1f16b7e331697
SHA512

48fd55a4ba080c358cb1741c546e5754553ffe0933e82e025049f5996fe879e3d227428405a116a4abf89982a0b5d22e32112d8ed6920b6100cc02835d6280c0
SSDEEP

192:7s01DK+colPfr55/IGy2AfnwB5fVHw3Gwin34zk:RDxcIhI+A/exw3GBn34Y

Score

N/A

Malware Config

Signatures

Files

f2787b27913cb1b1addc0200c4afa00c643a6b38cca3c4213ec1f16b7e331697
.exe windows x86

bcb76b1421139b9600a4525140673f47

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

ExitProcess
CreateFileA
SetFilePointer
HeapAlloc
HeapFree
GetTickCount
GetProcessHeap
WriteFile
OpenProcess
lstrcmpiA
GetProcAddress
GetModuleFileNameA
GetModuleHandleA
CloseHandle
SleepEx
GetWindowsDirectoryA
GetCommandLineA
Sleep
ReadFileEx
CopyFileA
LoadLibraryA
GetSystemTime
DeleteFileA

user32

wsprintfA

msvcrt

strstr
memcpy
atoi
strcat
strcmp
memset
strlen
strcpy

psapi

EnumProcesses
GetModuleFileNameExA
GetModuleBaseNameA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy