b97b6e6e94474ff1085c7f6af441930d2e8229627e89e910363313164aa00f7c | Triage

Submit
Reports

Overview

overview

Static

static

b97b6e6e94...7c.exe

windows7-x64

b97b6e6e94...7c.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b97b6e6e94474ff1085c7f6af441930d2e8229627e89e910363313164aa00f7c.exe

Resource

win7-20220901-en

evasion persistence

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

b97b6e6e94474ff1085c7f6af441930d2e8229627e89e910363313164aa00f7c.exe

Resource

win10v2004-20221111-en

evasion persistence

windows10-2004-x64

9 signatures

150 seconds

General

Target

b97b6e6e94474ff1085c7f6af441930d2e8229627e89e910363313164aa00f7c
Size

157KB
MD5

a73cf3e0f5ba0f000bf881ca955e3204
SHA1

56c2b8605f43717a18addb90982b51c8b5e9152f
SHA256

b97b6e6e94474ff1085c7f6af441930d2e8229627e89e910363313164aa00f7c
SHA512

64f486c0902b966005d8e751eac8cec47b627bdcd4851bd51c0ae2803e2e11c47ff59dc6291c6cf215313448cca20e0b54a6b160f492566a4f6524bb16ef77a5
SSDEEP

1536:4V8x0vGtUBqgbDUL/0P8gl9kMtIJPslQMGnhshBnpfzLzFoyPjeSVOzB9yWyLDNh:b09qiDr8glW2lMhszFTmyEByLpxW+sZI

Score

N/A

Malware Config

Signatures

Files

b97b6e6e94474ff1085c7f6af441930d2e8229627e89e910363313164aa00f7c
.exe windows x86

6039c26165040db47e28057ca34786ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

srand
memcmp
strcat
isdigit
isspace
memcpy
rename
memset
_EH_prolog
__CxxFrameHandler
strcmp
strncpy
strstr
strcpy
rand
abs
strlen

user32

MessageBoxA
wvsprintfA

kernel32

GetModuleHandleA
HeapReAlloc
HeapFree
GetProcessHeap
HeapAlloc
LoadLibraryA
GetProcAddress
GetTickCount
GetStartupInfoA
GetCommandLineA
ExitProcess

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy