0bde6570b4a4800b48a2436e922af1070604516e11dbc7fb0ce711a7d5c3f28b | Triage

Submit
Reports

Overview

overview

Static

static

0bde6570b4...8b.exe

windows7-x64

0bde6570b4...8b.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

0bde6570b4a4800b48a2436e922af1070604516e11dbc7fb0ce711a7d5c3f28b.exe

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

0bde6570b4a4800b48a2436e922af1070604516e11dbc7fb0ce711a7d5c3f28b.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

0bde6570b4a4800b48a2436e922af1070604516e11dbc7fb0ce711a7d5c3f28b
Size

55KB
MD5

79b69eb5a66461881660e9266e7835cd
SHA1

977e615bb1759d2d53ecbc99e8eb78dc5f0a9637
SHA256

0bde6570b4a4800b48a2436e922af1070604516e11dbc7fb0ce711a7d5c3f28b
SHA512

1948f3be9a4a8b515d4556d7bd2170ea8937385665bb22399ae022b3a8b4eb671f728f581060ddc21d7b0eca753cf4522c5e25b2cc951b7eca508be786ecc8a0
SSDEEP

768:DMchfkRDinqW0QQRJypzoeKfsdQ6lJJrk7R1hUHYtKJiL21v61fR4F4rmh:DMV+0QrpEeKf36lreZ6wMiL214ih

Score

N/A

Malware Config

Signatures

Files

0bde6570b4a4800b48a2436e922af1070604516e11dbc7fb0ce711a7d5c3f28b
.exe windows x86

4eb27080a942ca81e36ae6a039fea45d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
CreateMailslotW
CreateDirectoryW
CreateFileMappingW
SetStdHandle
FindClose
DeleteFileA
GetLastError
ResetEvent
GetModuleHandleA
OpenEventA
WriteConsoleW
RemoveDirectoryA
CreateEventW
RemoveDirectoryA
lstrlenA
GetCommandLineA
GetFileType
SetEvent
CreateFileA
VirtualProtectEx
WriteFile
HeapFree
Sleep
FindClose

cryptui

CryptUIWizExport
CryptUIWizBuildCTL
WizardFree
DllUnregisterServer
CryptUIStartCertMgr
LocalEnroll
CryptUIWizDigitalSign
LocalEnrollNoDS
WizardFree
CryptUIDlgViewContext
DllRegisterServer
CryptUIDlgFreeCAContext
CryptUIWizImport

dbnmpntw

ConnectionClose
ConnectionClose
ConnectionClose
ConnectionClose

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy