ad754d6d382007f1d57142787b9fa309fb0a94b0e6c340d24327ae3e1c4d1cd9 | Triage

Submit
Reports

Overview

overview

Static

static

ad754d6d38...d9.exe

windows7-x64

ad754d6d38...d9.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ad754d6d382007f1d57142787b9fa309fb0a94b0e6c340d24327ae3e1c4d1cd9.exe

Resource

win7-20221111-en

persistence ransomware

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

ad754d6d382007f1d57142787b9fa309fb0a94b0e6c340d24327ae3e1c4d1cd9.exe

Resource

win10v2004-20220812-en

persistence ransomware spyware stealer

windows10-2004-x64

15 signatures

150 seconds

General

Target

ad754d6d382007f1d57142787b9fa309fb0a94b0e6c340d24327ae3e1c4d1cd9
Size

328KB
MD5

65d63d237251c492c7c2a8617c40b53e
SHA1

80d06e4ed07626bcf0312b4022014cdbda934c9a
SHA256

ad754d6d382007f1d57142787b9fa309fb0a94b0e6c340d24327ae3e1c4d1cd9
SHA512

f9263beb29fcaa3db667866892783fd57b7ad51e8ea48703fc1b610416aa282c1e55e254cd10b510e6d327ed70a1004ef708048ece60032bd399b756973c2e40
SSDEEP

6144:qLAJ3I3pnzOwewUqjxGTw8NMM8iH+C+MJKzb3n3jMR/mriB9ph:qLg3I3pnzORwRjxG3i8H+C+2oLnLe

Score

N/A

Malware Config

Signatures

Files

ad754d6d382007f1d57142787b9fa309fb0a94b0e6c340d24327ae3e1c4d1cd9
.exe windows x86

a18f8b8444b284202bee8efa9863fa7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefDlgProcA
CallWindowProcW

kernel32

GetLogicalDriveStringsW

Sections

.text
Size: 300KB - Virtual size: 299KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

nono
Size: 4KB - Virtual size: 548B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

lolo
Size: 4KB - Virtual size: 38B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 654B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy