20d872857fa9d5497e4113220412b72e8d64e17667305d19f37bf77e7cdfff00 | Triage

Submit
Reports

Overview

overview

4

Static

static

20d872857f...00.exe

windows7-x64

4

20d872857f...00.exe

windows10-2004-x64

4

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

20d872857fa9d5497e4113220412b72e8d64e17667305d19f37bf77e7cdfff00.exe

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

20d872857fa9d5497e4113220412b72e8d64e17667305d19f37bf77e7cdfff00.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

20d872857fa9d5497e4113220412b72e8d64e17667305d19f37bf77e7cdfff00
Size

144KB
MD5

0414aca08d3d3a3a9797374f0b9849d1
SHA1

24fd3424d5a9258a55c92bbc406a76ba3bcf4a87
SHA256

20d872857fa9d5497e4113220412b72e8d64e17667305d19f37bf77e7cdfff00
SHA512

ef4ea83e42a62297d7115778e75754df57074bdbc1e68920336f36fd257b09fd5a6947838c7b07183819b23b0d972c62872965a24df5aabcebdd06e4f0b5bb1a
SSDEEP

3072:Ov6nJj/UW1KmZqiyzf1QnhW2IF2B2Tj3Zj:OyJj/siyZQhW1

Score

N/A

Malware Config

Signatures

Files

20d872857fa9d5497e4113220412b72e8d64e17667305d19f37bf77e7cdfff00
.exe windows x86

a94ab2d6568e955b544fcba1c3a7ae0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFileA

user32

IsIconic
IsRectEmpty
GetFocus
IsDialogMessageW
IsMenu
GetDC
IsWindow
LoadCursorA
GetMenu

kernel32

GetCurrentThreadId
GetOEMCP
LoadLibraryExA
VirtualFree
DeleteCriticalSection
LocalReAlloc
GlobalAddAtomA
GetUserDefaultLCID
VirtualQuery
CompareStringA
GetCurrentProcess
GetCurrentProcessId
MoveFileExA
GetCommandLineA
lstrcatA
ExitProcess
GetDateFormatA
FreeLibrary
LoadLibraryA
VirtualAllocEx
GetDiskFreeSpaceA
GetThreadLocale
GetTickCount

gdi32

GetPixel
GetTextColor
CreateFontIndirectA
CreateDIBitmap

Exports

Exports

__u_cx@20

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy