f00b42b1887124d38525ae30c549e1a23ce24ac730219fe0b96cd4ac67ce1f6a | Triage

Submit
Reports

Overview

overview

Static

static

f00b42b188...6a.exe

windows7-x64

f00b42b188...6a.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f00b42b1887124d38525ae30c549e1a23ce24ac730219fe0b96cd4ac67ce1f6a.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

f00b42b1887124d38525ae30c549e1a23ce24ac730219fe0b96cd4ac67ce1f6a.exe

Resource

win10v2004-20220812-en

evasion persistence

windows10-2004-x64

11 signatures

150 seconds

General

Target

f00b42b1887124d38525ae30c549e1a23ce24ac730219fe0b96cd4ac67ce1f6a
Size

171KB
MD5

0fc4659a59d0fa17bff47f0cb5a94db8
SHA1

4780f431b2f6bdcc47812312ca10c1b3c8edfa87
SHA256

f00b42b1887124d38525ae30c549e1a23ce24ac730219fe0b96cd4ac67ce1f6a
SHA512

a3f64f4055a4cd2cd2d0e02309e044152848a526bf1b3927e08a07f872e19a584b071a486f7a4b327927a2eb16cbfbde36f3cf08914c298bbdfcbe7117e9b209
SSDEEP

3072:+/iF5m7PtlxiDV6sy+7BTQC745AypubN6dndDuPX9vqhL9bv1aVQXvBfTS:j5m9iDVrEV5AyAN6XoXNqhxb1LpLS

Score

N/A

Malware Config

Signatures

Files

f00b42b1887124d38525ae30c549e1a23ce24ac730219fe0b96cd4ac67ce1f6a
.exe windows x86

7cabb6de959357198d51173f9922ab97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord183
ord587
MethCallEngine
ord556
ord668
EVENT_SINK_AddRef
DllFunctionCall
ord563
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord537
ord644
ord570
ord681
ord100
ord687
ord432

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy