b4e9929dbbe654359a22d5fe22cc9dd7cd4d8d27d02dc71900585fbe9bf66735 | Triage

Submit
Reports

Overview

overview

8

Static

static

b4e9929dbb...35.exe

windows7-x64

8

b4e9929dbb...35.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b4e9929dbbe654359a22d5fe22cc9dd7cd4d8d27d02dc71900585fbe9bf66735.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

b4e9929dbbe654359a22d5fe22cc9dd7cd4d8d27d02dc71900585fbe9bf66735.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

b4e9929dbbe654359a22d5fe22cc9dd7cd4d8d27d02dc71900585fbe9bf66735
Size

76KB
MD5

79144113ec96622bff00870e61ee4ecb
SHA1

7ed3016648cdec2d8fe9dba047f60b835e19224f
SHA256

b4e9929dbbe654359a22d5fe22cc9dd7cd4d8d27d02dc71900585fbe9bf66735
SHA512

8ceb45fbdb7add60953725d5ea3fe041f0344108002719b8fa6ca06dcaa0eb768a3353aaf98c2f096f2a25a875ac825a33c0322e887048a39338e69ab622d4ed
SSDEEP

1536:q9ZfGv8XXkVA6yuODffOPRG3YllpnrDH4/Mq:Gewg7yuO7zYllVH4/

Score

N/A

Malware Config

Signatures

Files

b4e9929dbbe654359a22d5fe22cc9dd7cd4d8d27d02dc71900585fbe9bf66735
.exe windows x86

1654a0e977e27aac1d1b8c3e2c25ec86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
FormatMessageA
LoadLibraryA
CreateEventA
GetProcAddress
GetLogicalDriveStringsA
WaitForSingleObject
CompareStringA
TlsGetValue
CreateFileMappingA
ReadFile
OpenMutexW
GetLocalTime

ctl3d32

Ctl3dEnabled
Ctl3dRegister
Ctl3dCtlColor
Ctl3dGetVer

user32

GetMessageW
ChangeMenuA
LoadCursorA
GetCursorPos
DefDlgProcA
InsertMenuW
PostMessageW
DrawEdge
wsprintfA
SetFocus
DialogBoxParamW
SetParent
LoadStringW
IsCharUpperW
IsDialogMessageW
MessageBoxExA
PeekMessageW
DrawTextExW

resutils

ClusWorkerTerminate
ResUtilDupString
ClusWorkerCreate

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy