a42b43774433fb7fe7fa3fe423c348de7d0ccad4b38ced4ebc084dce321afc49 | Triage

Submit
Reports

Overview

overview

Static

static

a42b437744...49.exe

windows7-x64

a42b437744...49.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a42b43774433fb7fe7fa3fe423c348de7d0ccad4b38ced4ebc084dce321afc49.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

a42b43774433fb7fe7fa3fe423c348de7d0ccad4b38ced4ebc084dce321afc49.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a42b43774433fb7fe7fa3fe423c348de7d0ccad4b38ced4ebc084dce321afc49
Size

189KB
MD5

37539767c2efb1b7ec136b8c9df725f6
SHA1

b94b2eb8bcc196962b1dec17c64731f85eac190d
SHA256

a42b43774433fb7fe7fa3fe423c348de7d0ccad4b38ced4ebc084dce321afc49
SHA512

b79b90dea4f7dfa0d2ffd1ace5d87f4dd55faffe62805f7787ac9187923aae76014aac158a467d9f946a8604d14bf8089fddac95ee15756157a5e0b69388e3d7
SSDEEP

3072:1AAifINGKUGS6DT3bAQjLwpsk3U54gsdR4T8RoXRoKw/UHnX+BXMRYXoyoSqzzQv:1AFgNGK1DT3ditVKTa6RbYUHOBXMRYY

Score

N/A

Malware Config

Signatures

Files

a42b43774433fb7fe7fa3fe423c348de7d0ccad4b38ced4ebc084dce321afc49
.exe windows x86

5e65364987a2838cf965cbf641233dec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_cexit
_exit
__p__fmode
__setusermatherr
_XcptFilter
fseek
__p__commode
fread
__set_app_type
_controlfp
wcstombs
strspn
_initterm
_ismbblead
exit
wcspbrk
_amsg_exit
ungetc
__getmainargs

kernel32

FindResourceA
SetCommBreak
GetDateFormatW
CreateFileW
GlobalFlags
DeleteFileA
SearchPathW
FileTimeToDosDateTime
CreateThread
WaitForMultipleObjectsEx
GetShortPathNameA
MoveFileA

Exports

Exports

_ReplyMessageReplyMessageReplyMessage@0

Sections

.text
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy