16d00b8e19c1b45c57f591277485148fb80dca5a061d20a110eb94be6a0fa52b | Triage

Submit
Reports

Overview

overview

8

Static

static

16d00b8e19...2b.exe

windows7-x64

8

16d00b8e19...2b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

16d00b8e19c1b45c57f591277485148fb80dca5a061d20a110eb94be6a0fa52b.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

16d00b8e19c1b45c57f591277485148fb80dca5a061d20a110eb94be6a0fa52b.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

2 signatures

150 seconds

General

Target

16d00b8e19c1b45c57f591277485148fb80dca5a061d20a110eb94be6a0fa52b
Size

20KB
MD5

93145b8d5e0bd800ac6deeac6a1feefd
SHA1

274a61748e38d37dc3471ec18e1d91ae38262c3d
SHA256

16d00b8e19c1b45c57f591277485148fb80dca5a061d20a110eb94be6a0fa52b
SHA512

7c69280de245db913511e795dc4a4cd12161b060149b500e2819e0c3f6762e8927973ce13263ae9c55c9de66ad25ea39a22ea152d2dade5cf8a7f661323c6453
SSDEEP

384:O6yjWk0Q0hB8c2lSTOx4vvTyJaYCa5so/8:O6yNY8cxHTyJaY3OoU

Score

N/A

Malware Config

Signatures

Files

16d00b8e19c1b45c57f591277485148fb80dca5a061d20a110eb94be6a0fa52b
.exe windows x86

ef6f21b64207ed1575eb0e9619eef8af

Code Sign

03:00:07:4d:00:75:3a:45:bc:a6:d7:fb:9d:aa:d4:d4
Certificate

Issuer

CN=Oaqoqireawoa

Not Before

31/12/2010, 21:00

Not After

31/12/2039, 23:59

Subject

CN=Oaqoqireawoa

ea:2e:76:55:17:e8:6e:b8:6f:f4:60:6b:e7:48:3c:ff:fc:7a:95:a3
Signer

Actual PE Digest

ea:2e:76:55:17:e8:6e:b8:6f:f4:60:6b:e7:48:3c:ff:fc:7a:95:a3

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Oaqoqireawoa

24/11/2022, 14:54
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCommandLineA
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetSystemInfo
GetVersion
LoadLibraryA

user32

KillTimer

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 274B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy