973aebcf9a2e774b2959d62fe6c6b6ea7072354aeda249dc993e0420e1278572 | Triage

Submit
Reports

Overview

overview

3

Static

static

973aebcf9a...72.exe

windows7-x64

1

973aebcf9a...72.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

973aebcf9a2e774b2959d62fe6c6b6ea7072354aeda249dc993e0420e1278572.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

973aebcf9a2e774b2959d62fe6c6b6ea7072354aeda249dc993e0420e1278572.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

973aebcf9a2e774b2959d62fe6c6b6ea7072354aeda249dc993e0420e1278572
Size

205KB
MD5

e67066adcfb1d3ae0cf8a2c99e96b58d
SHA1

1fe901330085b5f694ad2eb89d077a0c6fae57e8
SHA256

973aebcf9a2e774b2959d62fe6c6b6ea7072354aeda249dc993e0420e1278572
SHA512

f3ed7777798a7136ef2ab9b2be2f140424ae4e2673c8dbc0e14a497cbd9ad1f8d6a7a1225e82c6b6b77d97257377f93b9d219b78f973f04db9422dff2d2554e8
SSDEEP

3072:DYXNAQSH/6hCql7DnXZdiugElkACrG2UKAIM54WCpESV9frZG8x9:L2CcDXX5NVQAI3WpM1rr

Score

N/A

Malware Config

Signatures

Files

973aebcf9a2e774b2959d62fe6c6b6ea7072354aeda249dc993e0420e1278572
.exe windows x86

dd79f9d6661d4082c2584a1546347e86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetVersion
GetProcessHeap
lstrcmpA
GlobalFindAtomW
GetCommandLineW
GetModuleHandleA
GetUserDefaultLangID
lstrcmpiW
GetTickCount
GetCurrentThreadId
GetACP
lstrcmpiA
RemoveDirectoryA
GetDriveTypeA
GetConsoleOutputCP
QueryPerformanceCounter
MulDiv
GetStartupInfoA
SetLastError
GetCurrentThread
GetCommandLineA
GetModuleHandleW
GetWindowsDirectoryA
GetThreadLocale
GlobalFindAtomA
lstrlenW
DeleteFileW
Sleep
SetCurrentDirectoryA
IsDebuggerPresent
GetCurrentProcess
lstrlenA
CopyFileA
DeleteFileA
LoadLibraryW
GetCurrentProcessId
GetOEMCP
VirtualAlloc

user32

GetDesktopWindow
GetDC
GetSystemMetrics
CharNextA

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy