ac2f5571faa18c7b57016ace0ec1a7e4cb6391aa6165d80e7cb86407623a988e | Triage

Submit
Reports

Overview

overview

8

Static

static

ac2f5571fa...8e.exe

windows7-x64

8

ac2f5571fa...8e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ac2f5571faa18c7b57016ace0ec1a7e4cb6391aa6165d80e7cb86407623a988e.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ac2f5571faa18c7b57016ace0ec1a7e4cb6391aa6165d80e7cb86407623a988e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ac2f5571faa18c7b57016ace0ec1a7e4cb6391aa6165d80e7cb86407623a988e
Size

30KB
MD5

5c37a7a69b739f45607dd3106163034f
SHA1

9d5152c4e845ca40528ecc72fbba20f2072e9dd1
SHA256

ac2f5571faa18c7b57016ace0ec1a7e4cb6391aa6165d80e7cb86407623a988e
SHA512

1ece50a0fd2ef152c6199d457be2d9f9675750ed4868ba7705ec372d56d0fdf915b1669e791589f63d127b4c6fd3e9ff4380f6abb8d4dc1c05ee1bf6c9ef4465
SSDEEP

384:QNQVyWfnwhtDLtwKgUBHFGDDm7hVMrI1vCis8inS5XzEC6y6FsJX:Q+g4whFpcUdkDa7eSvs8MkXzECuSJX

Score

N/A

Malware Config

Signatures

Files

ac2f5571faa18c7b57016ace0ec1a7e4cb6391aa6165d80e7cb86407623a988e
.exe windows x86

b93427a997e94e265378eb4b960f52a5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
_controlfp
_except_handler3
__set_app_type
_XcptFilter
__p__fmode
_exit
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit

user32

SendMessageA
DialogBoxParamA
DestroyWindow
EndPaint
DefWindowProcA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
BeginPaint

kernel32

GetCommandLineW
GetModuleHandleA
lstrcpynA
lstrcatA
HeapFree
LoadLibraryA
CreateFileA
HeapAlloc
GetTempPathA
CreateDirectoryA
ReadFile
CloseHandle
GetFileSize
GetLastError
ExitProcess
GetTempFileNameA
GetProcessHeap
GetStartupInfoA

comctl32

ord17

shell32

CommandLineToArgvW

wtsapi32

WTSWaitSystemEvent
WTSEnumerateProcessesA

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 446B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy