45e404c5461362cf0a5174711eccb2714bfb59b30f704475590d8985671fe784 | Triage

Submit
Reports

Overview

overview

8

Static

static

45e404c546...84.exe

windows7-x64

8

45e404c546...84.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

45e404c5461362cf0a5174711eccb2714bfb59b30f704475590d8985671fe784.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

45e404c5461362cf0a5174711eccb2714bfb59b30f704475590d8985671fe784.exe

Resource

win10v2004-20221111-en

discovery persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

45e404c5461362cf0a5174711eccb2714bfb59b30f704475590d8985671fe784
Size

752KB
MD5

8a5f963d86a57231d9e0cbf7932e5b73
SHA1

139967818fc5e39fdafe69f89afd9cdaaec25754
SHA256

45e404c5461362cf0a5174711eccb2714bfb59b30f704475590d8985671fe784
SHA512

4c8362356e08a11970c29265a6806af65aae798fa97aae34c8865a3b4a5323380b439bb54732d862f9ee87bd290933d50d705e9d30227a67c65ee1aec3d635ca
SSDEEP

12288:B+A4X3ccC+G+co053jXT5y8yDqUlu5BKFaDakOgSi8vvFe5C4r9agT9dvdDvVFj1:kJcd+wpTT5tIqUlu5otkYvN+559d1vVL

Score

N/A

Malware Config

Signatures

Files

45e404c5461362cf0a5174711eccb2714bfb59b30f704475590d8985671fe784
.exe windows x86

535ab78e57107627aa159337faf875b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
InitializeCriticalSection
GetFileSize
CreateMutexW
GetTickCount
CloseHandle
SetLastError
GetModuleHandleA
DeleteFileA
SuspendThread
FindClose
ExitProcess
AddAtomA
HeapCreate
CreateFileA
HeapDestroy
HeapSize
ResetEvent
GetTickCount
GetEnvironmentVariableA
SetEndOfFile
ReleaseMutex
WaitForSingleObject
GetStartupInfoW
GetSystemInfo

shell32

StrChrA
SHFree
ShellAboutA
ExtractIconA
DragAcceptFiles
SHGetMalloc
DragQueryFileA
DllUnregisterServer
SHGetSettings
SHGetDiskFreeSpaceA
ShellMessageBoxA
DragFinish
DuplicateIcon

dswave

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 746KB - Virtual size: 745KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy