b4a5f19cd43de4b5a8e6ce8c5a4106af01f8f9c2134ad2bbc7c3bffb36205f8b | Triage

Submit
Reports

Overview

overview

3

Static

static

b4a5f19cd4...8b.exe

windows7-x64

3

b4a5f19cd4...8b.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b4a5f19cd43de4b5a8e6ce8c5a4106af01f8f9c2134ad2bbc7c3bffb36205f8b.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

b4a5f19cd43de4b5a8e6ce8c5a4106af01f8f9c2134ad2bbc7c3bffb36205f8b.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b4a5f19cd43de4b5a8e6ce8c5a4106af01f8f9c2134ad2bbc7c3bffb36205f8b
Size

148KB
MD5

bb26fcc89bf647ee8c519ff453815392
SHA1

f718ee3f6dd88730a7a34477d6832f48f762e242
SHA256

b4a5f19cd43de4b5a8e6ce8c5a4106af01f8f9c2134ad2bbc7c3bffb36205f8b
SHA512

6633578d5b5d0d6768f4ef7fb4a8c7aa13a8a7314d6d348f4dee414b43b03ce7dbb945af2158aa6c6c4c31fed82930205551cde81a9f88476f7867b14b53c8d2
SSDEEP

3072:o4Yd+dVa3UI8bYqXjRPKthonA2rY4Rj8G5Poh:V4EgKMaj4hor8Gg

Score

N/A

Malware Config

Signatures

Files

b4a5f19cd43de4b5a8e6ce8c5a4106af01f8f9c2134ad2bbc7c3bffb36205f8b
.exe windows x86

54c0eee76a707654d18ba8a82aff5cdd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
LCMapStringW
LCMapStringA
GetStringTypeW
ExitProcess
TerminateProcess
GetCurrentProcess
HeapAlloc
HeapFree
RtlUnwind
GetCommandLineA
GetVersion
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetLastError
SetFilePointer
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
WriteFile
ReadFile
CloseHandle
FlushFileBuffers
GetProcAddress
GetModuleHandleA
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetStdHandle
CreateFileA
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
MultiByteToWideChar
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetEndOfFile
GetStringTypeA
RaiseException

user32

PostMessageA
FindWindowA

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy