d0d1ce9c05e97f4175260c5a0d4e81628f718eaf5dbcd1b4914d7e781439d505 | Triage

Submit
Reports

Overview

overview

8

Static

static

d0d1ce9c05...05.exe

windows7-x64

8

d0d1ce9c05...05.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d0d1ce9c05e97f4175260c5a0d4e81628f718eaf5dbcd1b4914d7e781439d505.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

d0d1ce9c05e97f4175260c5a0d4e81628f718eaf5dbcd1b4914d7e781439d505.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d0d1ce9c05e97f4175260c5a0d4e81628f718eaf5dbcd1b4914d7e781439d505
Size

297KB
MD5

439bfe7c555609116dea495e7e22a970
SHA1

e35856e0ba8756a4011711ec520372b2c5adb386
SHA256

d0d1ce9c05e97f4175260c5a0d4e81628f718eaf5dbcd1b4914d7e781439d505
SHA512

e88240adb8ec2bd0ba6d09ea06f5b78b439f337f56a2d0bead60a51a047134c78f6f6dc2639b8db0b9a0f913342dae05de9193e3718d460286dc9521ebb156c6
SSDEEP

6144:POyyVfVW3p2+5dMdtaaM+1JejdKZue7NUXXakFqYS/JbXnHG:m85ZCjguUXQfJTG

Score

N/A

Malware Config

Signatures

Files

d0d1ce9c05e97f4175260c5a0d4e81628f718eaf5dbcd1b4914d7e781439d505
.exe windows x86

5d12ac997fe351ac288ae48eaf64767a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FindAtomW
GetStartupInfoA
GetLogicalDrives
GetStringTypeW
SetEvent
Sleep
CloseHandle
CopyFileA
ReadConsoleA
LoadLibraryW
ReadConsoleA
GetLastError
ReleaseMutex
ReadConsoleA
GetFileAttributesA
VirtualProtect
HeapSize
GetDriveTypeW
lstrlenW
GetPrivateProfileSectionW
HeapDestroy

dsprop

CheckADsError
MsgBox
MsgBox
MsgBox
ErrMsg
ErrMsg
FindSheet
ErrMsg
ReportError
FindSheet
CheckADsError
FindSheet
ReportError

gpedit

DllCanUnloadNow
BrowseForGPO
DllGetClassObject
ExportRSoPData

Sections

.text
Size: 1024B - Virtual size: 855B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 266B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.export
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy