528f11a023521bc642afd9af7e0a64a86889393b9ec8eef9ba35a8b64a18db49 | Triage

Submit
Reports

Overview

overview

8

Static

static

528f11a023...49.exe

windows7-x64

8

528f11a023...49.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

528f11a023521bc642afd9af7e0a64a86889393b9ec8eef9ba35a8b64a18db49.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

528f11a023521bc642afd9af7e0a64a86889393b9ec8eef9ba35a8b64a18db49.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

528f11a023521bc642afd9af7e0a64a86889393b9ec8eef9ba35a8b64a18db49
Size

306KB
MD5

a95f52c34c7633411dc00352723b2f21
SHA1

c9003c87a185f0d5efbd7c8a296ed6d5baf197c3
SHA256

528f11a023521bc642afd9af7e0a64a86889393b9ec8eef9ba35a8b64a18db49
SHA512

1b5d848e30f4b385161f2e5265448e73bf089bcd65c212939c5c70c741846a0c0d9721d97021597c4dcb4e1b4df1672fcb9484947b1504d690b52d5e545b74ea
SSDEEP

6144:YDPnPsHhCFO4g7m4q/UpbDFaDujOe6ZCsUO8AwH7gCi8mBoKi:6PnPkZ7m4q/UpFayjOv85H7Itb

Score

N/A

Malware Config

Signatures

Files

528f11a023521bc642afd9af7e0a64a86889393b9ec8eef9ba35a8b64a18db49
.exe windows x86

39e4225f216ab4a8f1ea97b290f25a14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetFileSize
HeapCreate
LoadLibraryA
LeaveCriticalSection
SetConsoleTitleA
CreateEventA
SetFileTime
lstrcatA
GetExitCodeProcess
ReadFile
CloseHandle
SetFileTime
GetStartupInfoW
InterlockedExchange
GetLastError
SetFileTime
lstrcpyW
IsBadWritePtr
HeapSize
GetStringTypeA

mstscax

DllUnregisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

shell32

ShellAboutA
DragFinish
SHGetSettings
SHFree
SHGetMalloc
ExtractIconA
DragAcceptFiles
ShellMessageBoxW
SHGetDiskFreeSpaceA
StrChrA
DuplicateIcon
DragQueryFileA
DllUnregisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ole
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy