16dd30bc3187e0027b35c468a4838a4db135ac28aed4d0e4eb5aeaa0530e7426 | Triage

Submit
Reports

Overview

overview

7

Static

static

16dd30bc31...26.exe

windows7-x64

7

16dd30bc31...26.exe

windows10-2004-x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

16dd30bc3187e0027b35c468a4838a4db135ac28aed4d0e4eb5aeaa0530e7426.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

16dd30bc3187e0027b35c468a4838a4db135ac28aed4d0e4eb5aeaa0530e7426.exe

Resource

win10v2004-20220812-en

discovery persistence

windows10-2004-x64

7 signatures

150 seconds

General

Target

16dd30bc3187e0027b35c468a4838a4db135ac28aed4d0e4eb5aeaa0530e7426
Size

282KB
MD5

572540a337ad063e789274532cbe9132
SHA1

1f36c5c0ce67f9fe9dd1cd716ab4e6058734955d
SHA256

16dd30bc3187e0027b35c468a4838a4db135ac28aed4d0e4eb5aeaa0530e7426
SHA512

24810cc3a63153a5839c2d7e1de4b9f9d51a8f19363482f8a716d34c5f6e21e11a54abf6e17935c0a06d92e82afc07a053c52416052f09fd5e5745fcf8d9abfa
SSDEEP

6144:62DRZVcMcpBrucMhrndQqAgKnef8AnA3n/LbFP1Z3s9B7txu8udmSr/:6cguRT1gRN1tsPBHSr

Score

N/A

Malware Config

Signatures

Files

16dd30bc3187e0027b35c468a4838a4db135ac28aed4d0e4eb5aeaa0530e7426
.exe windows x86

15d9ac7b34c1395d40481902c3c14a0f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
lstrcpynA
GetSystemTimeAsFileTime
GetCompressedFileSizeA
VirtualAlloc
GetProcAddress
LoadLibraryA
GetACP
GetSystemTime
lstrlenW
lstrlenA

msvbvm60

TipSetOption
__vbaI4Abs
rtcIsMissing
rtcChangeDir
__vbaI2Cy
__vbaVarCmpGe
rtcInputCharCount
rtcDateDiff

acledit

EditPermissionInfo
SedDiscretionaryAclEditor

mgmtapi

SnmpMgrRequest
SnmpMgrStrToOid
SnmpMgrGetTrapEx
SnmpMgrGetTrap
SnmpMgrTrapListen

Sections

.text
Size: 265KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy