97f20ba6edf8b8f48d2416c3d988a4784b99fcef59c4714a5fce371e9b1b7eb2 | Triage

Submit
Reports

Overview

overview

8

Static

static

97f20ba6ed...b2.exe

windows7-x64

8

97f20ba6ed...b2.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

97f20ba6edf8b8f48d2416c3d988a4784b99fcef59c4714a5fce371e9b1b7eb2.exe

Resource

win7-20221111-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

97f20ba6edf8b8f48d2416c3d988a4784b99fcef59c4714a5fce371e9b1b7eb2.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

97f20ba6edf8b8f48d2416c3d988a4784b99fcef59c4714a5fce371e9b1b7eb2
Size

299KB
MD5

e3685eec96d18b904a79a70550fb6da3
SHA1

18359a069040984fa7a6e671ff56204eb1ea7269
SHA256

97f20ba6edf8b8f48d2416c3d988a4784b99fcef59c4714a5fce371e9b1b7eb2
SHA512

deaf4eef453a64f976201d3f6adc45ad09a39a4ea0d90a45e27319fd6051788627a92114a111d7cb1499ec750fc4cc72eb9ab0552bc83b8c77d38b816618bf64
SSDEEP

6144:zASsDDIl8KDLDcxP9SXtyUXsBEs/147Lce4FF6P9TwyuzRbcN9:eMDDIFSBsL/147otFFisk

Score

N/A

Malware Config

Signatures

Files

97f20ba6edf8b8f48d2416c3d988a4784b99fcef59c4714a5fce371e9b1b7eb2
.exe windows x86

841639ab4bd410351784b0c1fb8735aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
CloseHandle
GetComputerNameA
GetModuleHandleA
SetEvent
GetSystemTime
CreateFileA
GetCommandLineW
SetLastError
LocalUnlock
UnmapViewOfFile
GetTimeFormatA
CreateThread
GetCurrentDirectoryA
GetTickCount
Sleep
FindVolumeClose
HeapCreate
LocalFree
LoadLibraryExW

user32

FillRect
CheckRadioButton
DrawEdge
IsWindow
GetKeyState
GetDlgItem
GetDC
DrawMenuBar
GetComboBoxInfo
CallWindowProcA
SetFocus
CreateWindowExA
DispatchMessageA

cryptui

CryptUIDlgSelectCA
LocalEnroll
WizardFree
CryptUIDlgCertMgr
CryptUIDlgSelectStoreA

inetcpl.cpl

OpenFontsDialog

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy