0b10f3fea8d921e3141f5ea49abd5e6daa72a8a0cbbd45431c0bcc13e710e709 | Triage

Submit
Reports

Overview

overview

8

Static

static

0b10f3fea8...09.exe

windows7-x64

8

0b10f3fea8...09.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0b10f3fea8d921e3141f5ea49abd5e6daa72a8a0cbbd45431c0bcc13e710e709.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

0b10f3fea8d921e3141f5ea49abd5e6daa72a8a0cbbd45431c0bcc13e710e709.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

0b10f3fea8d921e3141f5ea49abd5e6daa72a8a0cbbd45431c0bcc13e710e709
Size

749KB
MD5

0e47c8c179807e5bc9d324fd7deb894d
SHA1

03140a65adbc3e9ff8afbb7fdf191935a4e37a9e
SHA256

0b10f3fea8d921e3141f5ea49abd5e6daa72a8a0cbbd45431c0bcc13e710e709
SHA512

5b86b065a20ef112717b9fe76c487826b9b04cede9e1018206240dd0f550ca175eaa85628fb3e166d7c1320dc90ebabf6c5653ee10e2369b08670a1cde71fa48
SSDEEP

12288:aAtpSeRFpiOteTuvKgmK5FuQxGu6fQEVKAAPqPcYJJZBpXCl9bp5BrT1795ZXCwL:jfRFpiOteWKxNQUu6VkqhdSlF9RhjX

Score

N/A

Malware Config

Signatures

Files

0b10f3fea8d921e3141f5ea49abd5e6daa72a8a0cbbd45431c0bcc13e710e709
.exe windows x86

7bdfb21412ffa5ce8015fce11c923ef2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
CreateSemaphoreA
RemoveDirectoryA
GetProcessHeap
FindClose
ClearCommBreak
CloseHandle
WaitForMultipleObjects
FatalExit
WriteFile
AddAtomA
DeleteAtom
FindAtomA
CreatePipe
HeapFree
GetFileType
SetVolumeLabelA
HeapCreate
SetEndOfFile
GetDriveTypeW
RemoveDirectoryA
GetModuleHandleA
GetCommandLineA
IsBadWritePtr
GetModuleFileNameA

cryptui

DllUnregisterServer
CryptUIStartCertMgr
CryptUIDlgViewContext
CryptUIWizDigitalSign
WizardFree
CryptUIWizExport
CryptUIWizBuildCTL
CryptUIDlgFreeCAContext
WizardFree
LocalEnrollNoDS
DllRegisterServer
LocalEnroll
CryptUIWizImport

msrle32

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy