a3b28cb57127815f87c79ea7626dfaeeb6d7845657ef948319f62643657c57ce | Triage

Submit
Reports

Overview

overview

1

Static

static

a3b28cb571...ce.exe

windows7-x64

a3b28cb571...ce.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a3b28cb57127815f87c79ea7626dfaeeb6d7845657ef948319f62643657c57ce.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

a3b28cb57127815f87c79ea7626dfaeeb6d7845657ef948319f62643657c57ce.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a3b28cb57127815f87c79ea7626dfaeeb6d7845657ef948319f62643657c57ce
Size

110KB
MD5

59fc3bfffacf2b5df3c28dee6ebd6ad3
SHA1

4607fa1f4c4e6c0839186e2d2bc3165d8aaa00a5
SHA256

a3b28cb57127815f87c79ea7626dfaeeb6d7845657ef948319f62643657c57ce
SHA512

b94946db26f6a1cec444218c7738641ffbb708b422751c0caf28b160a2d0e078ce7e365d03d8d83cde1ef51ddc1a1850374e6c2e2311b7656a2f488d44c5313f
SSDEEP

3072:BurwUckOmSeWJprwM2qLbq9t9e+8DwjaEn:Burw6ep8BqL8tE+hj7n

Score

N/A

Malware Config

Signatures

Files

a3b28cb57127815f87c79ea7626dfaeeb6d7845657ef948319f62643657c57ce
.exe windows x86

8205babc7cf156f85b099c3a57312591

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesW
GetFileAttributesA
ExitThread
GetDriveTypeA
GetCommandLineA
FindVolumeClose
CloseHandle
GetFileType
GetModuleHandleA
MapViewOfFile
WaitForMultipleObjects
EnterCriticalSection
ReadFile
lstrlenA
GlobalLock
IsBadReadPtr
HeapFree
GetEnvironmentVariableW
GetFileTime
HeapCreate
GetCurrentDirectoryW
FindClose
LocalSize
GetCommandLineW
FindVolumeClose

uxtheme

GetWindowTheme
GetThemeColor
GetThemeTextExtent
GetThemeTextMetrics
OpenThemeData
GetThemeBool
GetThemeEnumValue
DrawThemeEdge
DrawThemeBackground
CloseThemeData
CloseThemeData
SetWindowTheme
IsThemeActive

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy