a596352aff2cd7f1d367b86a07dc05a7dde3e6cfed612b26abe60ce7f173c8b8 | Triage

Submit
Reports

Overview

overview

8

Static

static

a596352aff...b8.exe

windows7-x64

8

a596352aff...b8.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a596352aff2cd7f1d367b86a07dc05a7dde3e6cfed612b26abe60ce7f173c8b8.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

a596352aff2cd7f1d367b86a07dc05a7dde3e6cfed612b26abe60ce7f173c8b8.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a596352aff2cd7f1d367b86a07dc05a7dde3e6cfed612b26abe60ce7f173c8b8
Size

299KB
MD5

7c9321a3baf08810aa8a9cb258268847
SHA1

13f3dd27f8597811fd70ff84284e8773c3eb901e
SHA256

a596352aff2cd7f1d367b86a07dc05a7dde3e6cfed612b26abe60ce7f173c8b8
SHA512

ec0d953fbc9ae4a595713f2ee4398430a5f2f3e35a800262fd40fa6146657456d262deb6e3e5da0c92dd6273d0f65af872d18ee9877de4ee30e6e7300164617d
SSDEEP

6144:8EptmCSoEkHL6vgyAJEPenxdHtUNuFVGzadmZT1KpffuE1Hylvt:l2eE6LZ/CNoVGzaMZeW+yv

Score

N/A

Malware Config

Signatures

Files

a596352aff2cd7f1d367b86a07dc05a7dde3e6cfed612b26abe60ce7f173c8b8
.exe windows x86

d2aff3c504bd343717b266068807ea45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
GlobalFree
InterlockedExchange
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableW
IsBadStringPtrA
CreateEventW
WriteFile
CloseHandle
LocalFree
LoadLibraryW
GetLocalTime
VirtualAllocEx
ReleaseMutex
GetPrivateProfileIntA
GlobalFlags
SetEvent
lstrlenA
ResetEvent

advapi32

RegCloseKey
RegDeleteValueA
CreateServiceW
RegCreateKeyExW
InitializeSid
ClearEventLogW
ControlService
CloseEventLog
IsTextUnicode
IsValidSecurityDescriptor
RegEnumKeyA
IsValidSid
RegQueryValueW
InitializeSid

loghours

DialinHoursDialog
DialinHoursDialog
DialinHoursDialog
DialinHoursDialog
DialinHoursDialog

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy