b5118f38b44f76f25a0476c094ab7ade97a150c6df811fd5762542729c216c8d | Triage

Submit
Reports

Overview

overview

8

Static

static

b5118f38b4...8d.exe

windows7-x64

8

b5118f38b4...8d.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b5118f38b44f76f25a0476c094ab7ade97a150c6df811fd5762542729c216c8d.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

b5118f38b44f76f25a0476c094ab7ade97a150c6df811fd5762542729c216c8d.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b5118f38b44f76f25a0476c094ab7ade97a150c6df811fd5762542729c216c8d
Size

296KB
MD5

4bc4eeeada11c489e88c4d7cc6291400
SHA1

0b5d4b0ad6b9c73bca5684f0dff9650d89656f85
SHA256

b5118f38b44f76f25a0476c094ab7ade97a150c6df811fd5762542729c216c8d
SHA512

3803f870a58eaf939e7e877912fbe56230532146d56ff17e70b393d4fe55a014d872145bd60fad9f01eac89eb584ba6fff8b917da57d08c4c8594da537a5fea7
SSDEEP

6144:oVsTXF+yaNRUGjcbVkNUS5TEV2XnUfX501kCAgcw3t/EGQhbQaDOlXG7T:zTXF+dRUJGHxEVOr1kCAgcwF1gKo7T

Score

N/A

Malware Config

Signatures

Files

b5118f38b44f76f25a0476c094ab7ade97a150c6df811fd5762542729c216c8d
.exe windows x86

21a63c17334ab329d1ca3918b76a88fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDriveTypeA
GetStringTypeW
GetPrivateProfileSectionA
ReadConsoleA
GetLogicalDrives
LoadLibraryW
GetLastError
GetStartupInfoA
TlsGetValue
DeleteFileW
FindAtomW
lstrlenA
ReadConsoleA
ReleaseMutex
VirtualProtectEx
SearchPathW
Sleep
CloseHandle
ReadConsoleA
PulseEvent
HeapSize

dsprop

MsgBox
FindSheet
MsgBox
ErrMsg
ReportError
MsgBox
FindSheet
ErrMsg
CheckADsError
CheckADsError
ErrMsg
FindSheet
ReportError

gpedit

DllCanUnloadNow
DllGetClassObject
BrowseForGPO
ExportRSoPData

Sections

.text
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 266B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 73B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy