00b8717efc00a500ce78fd89546cf83c70909d644db793b1d503156fea551903 | Triage

Submit
Reports

Overview

overview

1

Static

static

00b8717efc...03.exe

windows7-x64

00b8717efc...03.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

00b8717efc00a500ce78fd89546cf83c70909d644db793b1d503156fea551903.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

00b8717efc00a500ce78fd89546cf83c70909d644db793b1d503156fea551903.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

00b8717efc00a500ce78fd89546cf83c70909d644db793b1d503156fea551903
Size

225KB
MD5

3f0fd5f2a8aab557503784d719f51806
SHA1

3726031bc381be21afb48b920d62f903cb6d2e8d
SHA256

00b8717efc00a500ce78fd89546cf83c70909d644db793b1d503156fea551903
SHA512

5d4eaeeea8e7c28465fae06871d16f215bc9badf5db1a6d097c025048bc418d24a5182268754b985d844fa329f110a2fa1f7ce83e99a8e23d9b484427391c461
SSDEEP

6144:0b0Yd00j/+/rr9jc9381/lIHHyNKmgb9nKGblD0Tbt:80KhzunSJ81dySkzb9HCTJ

Score

N/A

Malware Config

Signatures

Files

00b8717efc00a500ce78fd89546cf83c70909d644db793b1d503156fea551903
.exe windows x86

201124be1a47bbc914cf3c82c58445be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
WaitForSingleObject
CreateSemaphoreW
EnumDateFormatsExW
ReleaseSemaphore
GetCommandLineW
GetProcAddress
LoadLibraryW
FreeLibrary
DeleteFileW
LocalAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
InterlockedExchange
GetModuleHandleW
GetProcessHeap
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualProtect
GetCurrentThreadId
FoldStringW
GetLocaleInfoW
Sleep

oleaut32

SafeArrayDestroyDescriptor
SafeArrayCreateEx
SafeArraySetIID
SafeArrayGetRecordInfo
SafeArraySetIID
SetErrorInfo
SysAllocString
SysAllocStringLen

msvfw32

ICInfo

Sections

.text
Size: 168KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 310B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy