f41952576fd218abc603b9330fc4eea10041e5c532e3add195e67ff26ed1ed05 | Triage

Submit
Reports

Overview

overview

8

Static

static

f41952576f...05.exe

windows7-x64

8

f41952576f...05.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f41952576fd218abc603b9330fc4eea10041e5c532e3add195e67ff26ed1ed05.exe

Resource

win7-20220901-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

f41952576fd218abc603b9330fc4eea10041e5c532e3add195e67ff26ed1ed05.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

f41952576fd218abc603b9330fc4eea10041e5c532e3add195e67ff26ed1ed05
Size

156KB
MD5

29be68367be43fcd4f53e4098733b7b6
SHA1

58242039591dbfb4968af5aa9989df0b0d21c423
SHA256

f41952576fd218abc603b9330fc4eea10041e5c532e3add195e67ff26ed1ed05
SHA512

c9350d65adde5cdec12efb0950dac852abbfa334e1b0d65163cb3c6e119dae8fdf3438a28f5c2dbc42e154ec2d864e995955315fa48cefc4939d29f354752c0f
SSDEEP

3072:Z612XVqqVIAlGKInCOx7EVgeLCStSrsfp4ZdWh9NRI+JcMb8tyvl9RXECagIQCs7:I1MTMNiLCSSrc4ZdWh9tqit9WgFTDN1h

Score

N/A

Malware Config

Signatures

Files

f41952576fd218abc603b9330fc4eea10041e5c532e3add195e67ff26ed1ed05
.exe windows x86

a95855ce0893f0d72d730cace5699b35

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextColor
GetBkColor
GetMapMode
GetTextExtentPoint32W
CreateFontIndirectW
CreateSolidBrush
GetStockObject
CreatePatternBrush
DeleteDC

rpcrt4

RpcStringBindingComposeW
RpcStringFreeW
RpcSmDestroyClientContext
RpcBindingFromStringBindingW

shell32

SHGetFolderPathW
DragQueryFileW
DragFinish
CommandLineToArgvW
SHFileOperationW

user32

wvsprintfA

kernel32

GetCurrentDirectoryW
GetSystemTimeAsFileTime
GetProcessHeap
FindFirstVolumeA
GetModuleHandleW
CreateProcessA
GetTempFileNameA
HeapFree
HeapAlloc
LoadLibraryW
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
TerminateProcess
GetCurrentProcess

oleaut32

LHashValOfNameSys
DispGetIDsOfNames
VarUI4FromDec
SysFreeString

Sections

.text
Size: 85KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy