82ae76be0256c376f07656f2ba0635abaf1c1b6159480ed8ceca36894f51f0d3 | Triage

Submit
Reports

Overview

overview

8

Static

static

82ae76be02...d3.exe

windows7-x64

8

82ae76be02...d3.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

82ae76be0256c376f07656f2ba0635abaf1c1b6159480ed8ceca36894f51f0d3.exe

Resource

win7-20220812-en

discovery persistence

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

82ae76be0256c376f07656f2ba0635abaf1c1b6159480ed8ceca36894f51f0d3.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

82ae76be0256c376f07656f2ba0635abaf1c1b6159480ed8ceca36894f51f0d3
Size

172KB
MD5

5ccecef24e3f696769cd2a93eedbf3d1
SHA1

9178aedf82ac47a2f85436a9075e3bfd97596a92
SHA256

82ae76be0256c376f07656f2ba0635abaf1c1b6159480ed8ceca36894f51f0d3
SHA512

ac4136ce8b64645034f39533b5a0c8f7f3772c73c3294828d2d1c22a68ad548ff87a1aed52ab6222b34b1c4bfc85e570967c528c8f68bbed16237425f200ad64
SSDEEP

3072:iOvYX/j8uGJRsBk7DccKs+gtTLjn7TwndWERRJqqEV4wYoUzI7NE:/RuGkBkEcKs5/T9qLzK+lza

Score

N/A

Malware Config

Signatures

Files

82ae76be0256c376f07656f2ba0635abaf1c1b6159480ed8ceca36894f51f0d3
.exe windows x86

9b1bb7b8db651096b09e3fcf307a3b3e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetDIBits
CombineRgn
GetTextExtentPointA
SelectPalette
EndPage

shlwapi

ChrCmpIW
UrlGetLocationW

msvcrt

_controlfp
exit
__set_app_type
__p__fmode
memset
__p__commode
_amsg_exit
_initterm
_ismbblead
_XcptFilter
_exit
_cexit
__setusermatherr
__getmainargs

user32

SendNotifyMessageW
GetNextDlgTabItem
DeferWindowPos
CharUpperBuffW
wsprintfW
GetDC
SetScrollInfo

kernel32

CreateFileMappingW
FileTimeToDosDateTime
LoadLibraryExA
lstrlenA
EscapeCommFunction
LoadLibraryA
GetModuleFileNameA
GlobalSize
MulDiv
lstrcmpiW
GlobalCompact

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idir
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 141KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy