b977f370825e05f3647047b95293e9c9279382e89408ba83dd9fb7da994dda3f | Triage

Submit
Reports

Overview

overview

8

Static

static

b977f37082...3f.exe

windows7-x64

8

b977f37082...3f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b977f370825e05f3647047b95293e9c9279382e89408ba83dd9fb7da994dda3f.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

b977f370825e05f3647047b95293e9c9279382e89408ba83dd9fb7da994dda3f.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

9 signatures

150 seconds

General

Target

b977f370825e05f3647047b95293e9c9279382e89408ba83dd9fb7da994dda3f
Size

364KB
MD5

0d92e68b762cfd7411c0e70a970ac1bc
SHA1

2a719435955f36685adb39b3f83265edfa85c501
SHA256

b977f370825e05f3647047b95293e9c9279382e89408ba83dd9fb7da994dda3f
SHA512

78c6be8066d27194e0be0eda0e91ce3d1d1e9eed8f844c9978d731b834583cdbaec8a866d4a3338ec88ace213bcb3ad20e3c323c4858c27128585057b83a0c5d
SSDEEP

6144:oBMTvQEYBpy8wLY/5fxpKfS7YURZlO52/DxSVeHSl8dXnll1Xm:4rpSOzOEBE2/DIohpll

Score

N/A

Malware Config

Signatures

Files

b977f370825e05f3647047b95293e9c9279382e89408ba83dd9fb7da994dda3f
.exe windows x86

92d50cef41943b1d6e4bec93517015c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
WaitForSingleObject
GetConsoleDisplayMode
InterlockedExchange
GetVersion
GetTickCount
lstrlenA
VirtualProtect
GetModuleHandleA
GetUserDefaultLangID
HeapCreate
GlobalSize
CompareFileTime
ResumeThread
WaitForMultipleObjects
GlobalUnlock
SetLastError
HeapReAlloc
GetCommandLineA
GetAtomNameA
GetConsoleCP

user32

DrawTextA
GetClassNameA
wsprintfA
SetForegroundWindow
ShowWindow
DragDetect
GetParent
CreateIcon
ReleaseDC
GetDC
BeginPaint
GetFocus
GetTitleBarInfo
FrameRect
AnyPopup
GetWindow
EndPaint
FillRect
GetCursorPos

rastapi

AddPorts
DeviceDone
DeviceConnect
PortClose
DeviceListen

quartz

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 572KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy