a7843248abb53e4c5d331546fa3d268b261c7e82f83297c08364d3770cba333b | Triage

Submit
Reports

Overview

overview

9

Static

static

a7843248ab...3b.exe

windows7-x64

a7843248ab...3b.exe

windows10-2004-x64

9

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a7843248abb53e4c5d331546fa3d268b261c7e82f83297c08364d3770cba333b.exe

Resource

win7-20221111-en

evasion ransomware

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

a7843248abb53e4c5d331546fa3d268b261c7e82f83297c08364d3770cba333b.exe

Resource

win10v2004-20221111-en

evasion ransomware

windows10-2004-x64

10 signatures

150 seconds

General

Target

a7843248abb53e4c5d331546fa3d268b261c7e82f83297c08364d3770cba333b
Size

336KB
MD5

440772a59bcd96f082729fd01230e0b8
SHA1

51466aa487c81a3b14dce84d660a800b352e35ac
SHA256

a7843248abb53e4c5d331546fa3d268b261c7e82f83297c08364d3770cba333b
SHA512

518edb76aaac714137c295d8fcfaf7c2d6b4f743c67416f74c5c5fe57997396d97d2f94729655ccfbdb4e47a8e5a856b2822524e044dd8bb9749b9fb2c36c566
SSDEEP

6144:pBr9gkw1fhh/5ZnLRf3JUMKxKSqAYGOI3YWAE1Qek4Skg+Y8a9W+tQclx:jr9xsxNLR2MKIg/6ULSk7YPJt1T

Score

N/A

Malware Config

Signatures

Files

a7843248abb53e4c5d331546fa3d268b261c7e82f83297c08364d3770cba333b
.exe windows x86

f919b2148e77db9ee4b18b66c7d0802c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
SetDlgItemTextW
GetDesktopWindow
EnumChildWindows
SetWindowTextW
IsCharAlphaA
DialogBoxParamA
GetActiveWindow

ole32

CoRevokeClassObject

comctl32

InitCommonControlsEx

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

kernel32

GetDateFormatA
DeleteCriticalSection
GetStartupInfoA
GetTickCount
SetFileAttributesA
LoadResource
FindResourceA
InitializeCriticalSection
ExitProcess
HeapCreate
GetProcAddress
FreeLibrary
LoadLibraryA
HeapFree
LocalFree
IsBadReadPtr
LocalAlloc
GetNumberOfConsoleMouseButtons

Sections

.text
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy