70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995 | Triage

Submit
Reports

Overview

overview

8

Static

static

70e9c6eb61...95.exe

windows7-x64

8

70e9c6eb61...95.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995.exe

Resource

win7-20221111-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995
Size

19KB
MD5

19b2552be7e6ffee0881705650ebb155
SHA1

9ce62cbb4e20a23ab89b4d2b63fcb571a1a7f8b4
SHA256

70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995
SHA512

fea7759998529083099629de9b43d9763b854b957b1b0cac54ceb0e18ed528f0ae84b339ff378b4e726b0ec2f89c282c82d96854bc59c9c09ddb2b8d5cf3226c
SSDEEP

192:h6IC9B9FFnuZi4polNYf5NIEaS6e5Mbb8O0F+Q1H638I9+51OZ:+FhlENIEapeGb7c+Q1H63VzZ

Score

N/A

Malware Config

Signatures

Files

70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995
.exe windows x86

c23f2f07682c0f298d0b7a76de23a9ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
GetMessageA
EndPaint
DispatchMessageA
BeginPaint
MessageBoxW
TranslateMessage
CreateWindowExA
UpdateWindow
DefWindowProcA
SendMessageA
LoadIconA
LoadCursorA
SetScrollInfo
SetWindowTextA
GetCursorPos
LoadStringA
InsertMenuItemA
RegisterClassExA
ShowWindow
GetPropA
RemovePropA
SetPropA
ScrollWindow

kernel32

GetCommandLineA
HeapAlloc
GetProcessHeap
GetStartupInfoA
ExitProcess
lstrcpyA
LoadLibraryA
GetModuleHandleA
CloseHandle
lstrcatA
MapViewOfFile
GetCommandLineW
CreateDirectoryA

gdi32

CreateCompatibleDC
DeleteObject
CreateCompatibleBitmap

comctl32

ImageList_Create
ord17

shell32

CommandLineToArgvW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy