90618da732561b65d63a821b9d0cd87873481683d85b7deec6e27826a15c5bc8 | Triage

Submit
Reports

Overview

overview

8

Static

static

90618da732...c8.exe

windows7-x64

8

90618da732...c8.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

90618da732561b65d63a821b9d0cd87873481683d85b7deec6e27826a15c5bc8.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

90618da732561b65d63a821b9d0cd87873481683d85b7deec6e27826a15c5bc8.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

90618da732561b65d63a821b9d0cd87873481683d85b7deec6e27826a15c5bc8
Size

387KB
MD5

cca966f5e6c5312abdabb90ac3c9d7b1
SHA1

ab3f6bd32c00dfe4a6ec9fd424717929901f5678
SHA256

90618da732561b65d63a821b9d0cd87873481683d85b7deec6e27826a15c5bc8
SHA512

506483662553c89f173a56db3f0e7656af92ae62d0ded8c84099e1fa0ccdf9d5b85f10a2bc537835aab50bdb4cc85c342b5ce11312e6b08fbb2d54a855141de8
SSDEEP

6144:YQRF1syKP0Sv+RDoCUOEWgTezda470c4Cj2sezApca0PBV9dfn:B1sARqhrTAda46CysUllf

Score

N/A

Malware Config

Signatures

Files

90618da732561b65d63a821b9d0cd87873481683d85b7deec6e27826a15c5bc8
.exe windows x86

520a69cd9a66a8ad42994fb5de28eddd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingW
GetThreadContext
GetConsoleOutputCP
SetComputerNameExW
GetFileSize
DelayLoadFailureHook
FatalExit
MultiByteToWideChar
Sleep
TlsAlloc
DebugBreak
FindCloseChangeNotification
Process32FirstW
GetModuleHandleA
HeapAlloc
RtlMoveMemory
ord37
GetThreadPriority
IsDebuggerPresent
FreeEnvironmentStringsW
VirtualAlloc
GetLogicalDrives
GetVersionExA

msvcrt

wcsrchr
wcscat
_controlfp
exit
_mbstrlen
_wopen
iswgraph
_wstrtime
_mbctohira

dciman32

DCICreatePrimary
DCIBeginAccess
DCIDestroy
DCIOpenProvider
DCICloseProvider
DCIEndAccess

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 347KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy