90a7021b97b662be0e68a8aae029f2f781ec756e7c82dcb276efaacd29fecee7 | Triage

Submit
Reports

Overview

overview

8

Static

static

90a7021b97...e7.exe

windows7-x64

8

90a7021b97...e7.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

90a7021b97b662be0e68a8aae029f2f781ec756e7c82dcb276efaacd29fecee7.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

90a7021b97b662be0e68a8aae029f2f781ec756e7c82dcb276efaacd29fecee7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

90a7021b97b662be0e68a8aae029f2f781ec756e7c82dcb276efaacd29fecee7
Size

746KB
MD5

6678b1237201ec3c37268db6a995d76b
SHA1

6fce2534ccf7bcbc7751e51cc335d1ae46908250
SHA256

90a7021b97b662be0e68a8aae029f2f781ec756e7c82dcb276efaacd29fecee7
SHA512

522d9ff334bd47bf29c269306a6bc8a85478fb16f4ef68a980ee346feee72767bb15d7a830099582c072e0940bac74e6e9322e7af9c5a639d8ebc1ae129646fc
SSDEEP

12288:sMU/Go8JGCV1H5gM2tuZeX78EpFT6S8TVveRv5QQFEDZv8Lhas97FeSB7lG1jp13:sMU/GoqGQV5gxuZS78M6SweRmQFEDCNU

Score

N/A

Malware Config

Signatures

Files

90a7021b97b662be0e68a8aae029f2f781ec756e7c82dcb276efaacd29fecee7
.exe windows x86

32950a5d6368c6c238e90063673276df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
ExitThread
EnterCriticalSection
WaitForMultipleObjects
FindClose
CloseHandle
lstrlenA
GetCommandLineW
IsBadReadPtr
HeapFree
FindVolumeClose
GetCurrentDirectoryW
WriteFile
SetFileAttributesW
GetModuleHandleA
FindVolumeClose
HeapCreate
GetFileTime
LocalSize
GetCommandLineA
MapViewOfFile
GetModuleFileNameA
GetFileType
CancelIo
GetFileAttributesA

uxtheme

OpenThemeData
GetThemeTextMetrics
CloseThemeData
GetThemeTextExtent
CloseThemeData
DrawThemeBackground
SetWindowTheme
GetThemeEnumValue
IsThemeActive
GetThemeColor
GetWindowTheme
DrawThemeEdge
GetThemeBool

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy