ab59ab43bca69e4d8da366c81fc85b94ac14d12996d2743e0e1dba11dcc3eec8 | Triage

Submit
Reports

Overview

overview

8

Static

static

ab59ab43bc...c8.exe

windows7-x64

8

ab59ab43bc...c8.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ab59ab43bca69e4d8da366c81fc85b94ac14d12996d2743e0e1dba11dcc3eec8.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab59ab43bca69e4d8da366c81fc85b94ac14d12996d2743e0e1dba11dcc3eec8.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ab59ab43bca69e4d8da366c81fc85b94ac14d12996d2743e0e1dba11dcc3eec8
Size

769KB
MD5

74252893ab3fd0a0026122e6037d444e
SHA1

602c46a56191405114067d7b13e2f086d564b912
SHA256

ab59ab43bca69e4d8da366c81fc85b94ac14d12996d2743e0e1dba11dcc3eec8
SHA512

eed74fbda287d78e5a9d17a9f6d0f8a091eb86c328a4f0735d0fd53a150c8cf94fb9792b89b9edd7224aaf686d8d2ca06e35867289dce2291d65ca2a948115c5
SSDEEP

24576:Qa7VX9dsfan3JgPv0PvY+1L285yYZvfoANZ0wv3:X7VX92g3JLT1L285yYBzU

Score

N/A

Malware Config

Signatures

Files

ab59ab43bca69e4d8da366c81fc85b94ac14d12996d2743e0e1dba11dcc3eec8
.exe windows x86

b542ca695779ed84066c7ddeb63d93cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryA
OpenEventA
GetFileType
Beep
ReleaseMutex
HeapFree
VirtualProtect
ReleaseSemaphore
DeleteFileA
CreateFileMappingW
WriteFile
CreateFileA
FindClose
SetStdHandle
ResetEvent
GetDriveTypeA
GetCommandLineA
lstrlenA
WriteConsoleW
GetTickCount
GetModuleHandleA
FindClose
CreateDirectoryW
RemoveDirectoryA
CreateEventW

user32

IsWindow
DispatchMessageA
PeekMessageA
CreateIcon
GetSysColor
DrawTextW
MessageBoxA
GetWindowLongA
GetClassInfoA
IsZoomed
DestroyMenu
FindWindowA
DestroyMenu

dmloader

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy