b7fc35483ecf0dd62b0717cd803c6da3cf23705930300d7b905bf1396c44c834 | Triage

Submit
Reports

Overview

overview

6

Static

static

b7fc35483e...34.exe

windows7-x64

6

b7fc35483e...34.exe

windows10-2004-x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b7fc35483ecf0dd62b0717cd803c6da3cf23705930300d7b905bf1396c44c834.exe

Resource

win7-20221111-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

b7fc35483ecf0dd62b0717cd803c6da3cf23705930300d7b905bf1396c44c834.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

b7fc35483ecf0dd62b0717cd803c6da3cf23705930300d7b905bf1396c44c834
Size

139KB
MD5

4efb38557fd2e8a1192f21ec26a2a1f9
SHA1

1d840b857527802fdc86345f8837f2099df27252
SHA256

b7fc35483ecf0dd62b0717cd803c6da3cf23705930300d7b905bf1396c44c834
SHA512

9d0201fb1b656cd5424f2037e6caaace6af47431d3d41dfa9f05691ac608321a5bfab6edc0321eed40d41837aeaef1cc8d538c3e61164fd8fd9c9f80df733074
SSDEEP

3072:/N9H5mavvcICozr2s3oWfFKAuEVhUnfe2pzZSNQjelpHQ7F0Bpy:jZr2s/2EVhUnFNSuopHIF

Score

N/A

Malware Config

Signatures

Files

b7fc35483ecf0dd62b0717cd803c6da3cf23705930300d7b905bf1396c44c834
.exe windows x86

fab594ec02a26e8b768cec908dad8fbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetTimer
LoadBitmapA
GetMenu
CreateMenu
CreatePopupMenu
SetWindowLongA
SetScrollPos
GetWindowLongA
SetScrollRange

kernel32

VirtualAlloc
CloseHandle
FreeResource
CompareStringA
LocalFree
VirtualFree
FreeLibrary
GetCurrentThread
GetModuleHandleW
VirtualAllocEx
FindFirstFileA
WaitForSingleObject
GetSystemDefaultLangID
GetProcessHeap
GetThreadLocale
FormatMessageA
IsBadHugeReadPtr
GlobalAlloc
GetACP
FindResourceA
ExitProcess
VirtualQuery

comdlg32

FindTextA
GetOpenFileNameA
GetSaveFileNameA

gdi32

GetPaletteEntries
LineTo
GetBkMode
GetTextColor
RestoreDC
GetRgnBox

shell32

SHGetFolderPathA
SHGetFileInfoA
SHFileOperationA

Exports

Exports

nK2pcV
wKtlVdNfzTls@20
Nlw6ASL1cApZm

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy