af786c176dc988cbcd3e03bd628570aca17ff6714ffba03ee93641b6ad197035 | Triage

Submit
Reports

Overview

overview

Static

static

af786c176d...35.exe

windows7-x64

af786c176d...35.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

af786c176dc988cbcd3e03bd628570aca17ff6714ffba03ee93641b6ad197035.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

af786c176dc988cbcd3e03bd628570aca17ff6714ffba03ee93641b6ad197035.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

af786c176dc988cbcd3e03bd628570aca17ff6714ffba03ee93641b6ad197035
Size

200KB
MD5

4b19b1fbf082b1c7cb9be23e4a727bde
SHA1

86856d400bf2d2a6c524a6433c5f4d6b6d612841
SHA256

af786c176dc988cbcd3e03bd628570aca17ff6714ffba03ee93641b6ad197035
SHA512

1bf13bc88e4a52abd482b218c4c87d19a6bf8b93eef25be6fd06aafce82a37cfc2b16ef08398cef0f5a6bd22ef70f20e90e8aaeb1eccd9b43934429ba91f2d17
SSDEEP

6144:llLq/I+mO31DBybYdTJgr9OuZjOVce3BHdmzG31:TLqbN33RJgnRgVH4zGl

Score

N/A

Malware Config

Signatures

Files

af786c176dc988cbcd3e03bd628570aca17ff6714ffba03ee93641b6ad197035
.exe windows x86

0a1f89e4553ce6c56675fd36d08d70fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
IsBadWritePtr
DeleteAtom
CloseHandle
FindClose
HeapCreate
GetTapeStatus
ExitThread
SetVolumeLabelA
GetVersion
GetFileType
RemoveDirectoryA
GetModuleHandleA
HeapFree
WaitForMultipleObjects
RemoveDirectoryA
Beep
CreateDirectoryA
WriteFile
GetModuleFileNameA
CreateSemaphoreW
GetCommandLineA
FindAtomA
GetDriveTypeA
AddAtomW

uxtheme

GetThemeColor
CloseThemeData
GetThemeTextMetrics
DrawThemeBackground
GetWindowTheme
IsThemeActive
CloseThemeData
GetThemeBool
OpenThemeData
SetWindowTheme
GetThemeSysSize
GetThemeTextExtent
DrawThemeEdge

odbcbcp

bcp_bind
bcp_bind
bcp_bind
bcp_bind

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy