8f8687d2aed709313b0015e4f56f1b709d3eba4c36bea9ff433f7b425dfbd5a4 | Triage

Submit
Reports

Overview

overview

8

Static

static

8f8687d2ae...a4.exe

windows7-x64

8

8f8687d2ae...a4.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8f8687d2aed709313b0015e4f56f1b709d3eba4c36bea9ff433f7b425dfbd5a4.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

8f8687d2aed709313b0015e4f56f1b709d3eba4c36bea9ff433f7b425dfbd5a4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8f8687d2aed709313b0015e4f56f1b709d3eba4c36bea9ff433f7b425dfbd5a4
Size

189KB
MD5

968335cda7494d91926b06f03e323960
SHA1

7a9f28fa2dff6606b375ca5d6cb7144c9e3d7410
SHA256

8f8687d2aed709313b0015e4f56f1b709d3eba4c36bea9ff433f7b425dfbd5a4
SHA512

676e14e2b1ac291ce7eae09f361d3bc5fbc8d41ef03a3509e74d037cd29ef879c18516b3e2306355fb91c7b445b401b0608b8ee302585242f5cc73f0001d9cf9
SSDEEP

3072:WDo0tJ05WtpfuVeF7zO1GiL+KAbJHPKHel9oESVJbg5UzSpZ:N0tJ05WnMep61GxK4HPKcnOJbg5

Score

N/A

Malware Config

Signatures

Files

8f8687d2aed709313b0015e4f56f1b709d3eba4c36bea9ff433f7b425dfbd5a4
.exe windows x86

25b27f9c5896b18c83479b65a5176250

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA
GetOpenFileNameA
FindTextA
ChooseColorA

advapi32

GetUserNameA
RegEnumKeyExA
RegCreateKeyA

oleaut32

VariantChangeType
VariantCopyInd

ole32

PropVariantClear
ReleaseStgMedium

kernel32

MoveFileA
GetModuleHandleA
GetCurrentThreadId
GetCommandLineW
IsBadReadPtr
GetProcAddress
LoadLibraryA
InitializeCriticalSection
ExitProcess
FindFirstFileA
GetCommandLineA
GetOEMCP
GetFileType
VirtualAlloc
lstrlenA
ExitThread
GetACP

comctl32

ImageList_GetBkColor
ImageList_Remove
ImageList_Add

Sections

CODE
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy