5c07125d1b3d870c29604540cd74417cbf99f18047f7264043e9acc861907968 | Triage

Submit
Reports

Overview

overview

8

Static

static

5c07125d1b...68.exe

windows7-x64

8

5c07125d1b...68.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5c07125d1b3d870c29604540cd74417cbf99f18047f7264043e9acc861907968.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

5c07125d1b3d870c29604540cd74417cbf99f18047f7264043e9acc861907968.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

5c07125d1b3d870c29604540cd74417cbf99f18047f7264043e9acc861907968
Size

848KB
MD5

0c6898e3f39b0f34d822b90f54320c94
SHA1

d425a80d5cbe50e12378aa50e5bf4222307003c7
SHA256

5c07125d1b3d870c29604540cd74417cbf99f18047f7264043e9acc861907968
SHA512

47c05900b5119a14949b03d9c81cf823b34ae238052349519d9b3750c4027966ce415d9a64eaa7c8c94dc86ff9b01fd4a9abaa0cbcca04038b844d645aba2930
SSDEEP

24576:14KJzKZW+zp7qb/C/H1F4fZb+GAzMjOD:zRKKb69F4l+9zM

Score

N/A

Malware Config

Signatures

Files

5c07125d1b3d870c29604540cd74417cbf99f18047f7264043e9acc861907968
.exe windows x86

bfcc3b994e32afc6d6c4101b248f3627

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
SetFileAttributesW
WriteFile
FindVolumeClose
GetCommandLineA
GetFileTime
ExitThread
FindClose
GetFileAttributesA
HeapCreate
GetCommandLineW
GetModuleFileNameA
MapViewOfFile
FindVolumeClose
GetFileType
GetDriveTypeA
CancelIo
GetModuleHandleA
CloseHandle
LocalSize
IsBadReadPtr
HeapFree
EnterCriticalSection
WaitForMultipleObjects
GetCurrentDirectoryW

uxtheme

GetThemeTextMetrics
CloseThemeData
IsThemeActive
DrawThemeEdge
GetThemeEnumValue
DrawThemeBackground
CloseThemeData
GetWindowTheme
GetThemeColor
GetThemeTextExtent
SetWindowTheme
OpenThemeData
GetThemeBool

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 764KB - Virtual size: 764KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy