f7dc6cfcc93ad200a615e4b0b1951e7ab159636eb48d8f19874dc1698e532812 | Triage

Submit
Reports

Overview

overview

9

Static

static

f7dc6cfcc9...12.exe

windows7-x64

f7dc6cfcc9...12.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f7dc6cfcc93ad200a615e4b0b1951e7ab159636eb48d8f19874dc1698e532812.exe

Resource

win7-20220812-en

evasion ransomware

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

f7dc6cfcc93ad200a615e4b0b1951e7ab159636eb48d8f19874dc1698e532812.exe

Resource

win10v2004-20220812-en

evasion ransomware

windows10-2004-x64

10 signatures

150 seconds

General

Target

f7dc6cfcc93ad200a615e4b0b1951e7ab159636eb48d8f19874dc1698e532812
Size

216KB
MD5

88f9c81bf69cde243fa55d8b77b07dd2
SHA1

eee450f5fec2242d0d1057bd8e4d1f7ab2f11a6a
SHA256

f7dc6cfcc93ad200a615e4b0b1951e7ab159636eb48d8f19874dc1698e532812
SHA512

eeb6461292438f6d2ed90713d282c1535bb7c13ff2d085861b34dd0e3d45fdc8e07f0676b3f52bd76eea8392027ee88412cf649735084a7115c6ae6156e426dc
SSDEEP

6144:L63B7PRp/6XP90OzsKP58jeLq4oYXskCTMC1j:WR7pU/mqBPOMzStJ

Score

N/A

Malware Config

Signatures

Files

f7dc6cfcc93ad200a615e4b0b1951e7ab159636eb48d8f19874dc1698e532812
.exe windows x86

65f2771e562f483176c7490945f244e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WindowFromPoint
IsWindowVisible
IsWindow
BeginPaint
EndPaint
LoadIconA
LoadCursorA
RegisterClassExA
SetWindowTextA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

GetTextColor
CreateFontIndirectA
DeleteObject
FrameRgn

kernel32

GetTickCount
GetStartupInfoA
GetPrivateProfileStringA
GetLastError
GetThreadLocale
GetEnvironmentStrings
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapDestroy
RtlUnwind
SetFileAttributesA
FreeLibrary
GetExitCodeThread
HeapAlloc
HeapCreate
GetProcAddress
LoadLibraryA
DeleteCriticalSection

Sections

.text
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy