9f2aa1149b7a5a35f68103670cbc7d2891b0a96fe5709d42e345bdcdbcd6f8fb | Triage

Submit
Reports

Overview

overview

8

Static

static

9f2aa1149b...fb.exe

windows7-x64

8

9f2aa1149b...fb.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9f2aa1149b7a5a35f68103670cbc7d2891b0a96fe5709d42e345bdcdbcd6f8fb.exe

Resource

win7-20220812-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

9f2aa1149b7a5a35f68103670cbc7d2891b0a96fe5709d42e345bdcdbcd6f8fb.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

General

Target

9f2aa1149b7a5a35f68103670cbc7d2891b0a96fe5709d42e345bdcdbcd6f8fb
Size

49KB
MD5

a859374ae5f5be74e2b3f338394f55c4
SHA1

3f46570097dfb66f989a3f54c42ac1f17398bf70
SHA256

9f2aa1149b7a5a35f68103670cbc7d2891b0a96fe5709d42e345bdcdbcd6f8fb
SHA512

60536ca9bc227edd789b4f77436d1293e9fe37ebceda1ace7dc5d715312e84532897df014045eecc6ff5038449e0262a587b3a07648bea8aece9e28a0440c2dc
SSDEEP

1536:irzq+5hRpfvP7IRmBsEB0g3cy3jQgjFs749r5LHbrkE4Hfbo:XRsLB0AcqUmbFpbgjHfb

Score

N/A

Malware Config

Signatures

Files

9f2aa1149b7a5a35f68103670cbc7d2891b0a96fe5709d42e345bdcdbcd6f8fb
.exe windows x86

9a2bf6576b1e86cdc602150d109b142f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
strncpy
fabs
ceil
malloc
floor
free
memcpy
fseek
ftell
fread
fclose
_CIpow
_CIsqrt
_CIlog
_CIacos
strlen

kernel32

GetModuleHandleA
HeapCreate
HeapDestroy
ExitProcess
GetProcAddress
FreeLibrary
LoadLibraryA
TlsAlloc
GetVersionExA
HeapAlloc
HeapFree
HeapReAlloc

user32

ShowCursor
DestroyWindow
InvalidateRect
ShowWindow
DestroyIcon
FillRect
BeginPaint
EndPaint
DefWindowProcA
LoadIconA
RegisterClassExA
CreateWindowExA

gdi32

GetObjectType
DeleteObject
GetObjectA
CreateCompatibleDC
GetDIBits
DeleteDC
CreateDIBSection
SelectObject
BitBlt
CreateBitmap
SetPixel
GetStockObject

wsock32

closesocket
WSACleanup
WSAStartup

winmm

timeEndPeriod

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ta
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

src
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy