94124e38e30506975f8687173b901af47a511731a481b0f750b6f18ed093e023 | Triage

Submit
Reports

Overview

overview

8

Static

static

94124e38e3...23.exe

windows7-x64

8

94124e38e3...23.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

94124e38e30506975f8687173b901af47a511731a481b0f750b6f18ed093e023.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

94124e38e30506975f8687173b901af47a511731a481b0f750b6f18ed093e023.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

94124e38e30506975f8687173b901af47a511731a481b0f750b6f18ed093e023
Size

749KB
MD5

9060ef00bdeeef37a08a4c490aba30fc
SHA1

c49bc9f08bd74e397b9554515b62405619167021
SHA256

94124e38e30506975f8687173b901af47a511731a481b0f750b6f18ed093e023
SHA512

6994895f16b21826cdcb2f226be590f57a64c025b075b693aa8ca88c4d74366114e724e34c4db9445f1e5dcff5c72184ea9605c4cb3ec1bff495e7147b612972
SSDEEP

12288:LDns63FRGRbZrVwDExYMoSczBb/Mu/v29VUNGe5PeCno9YQ/tYAXqkbKz3LcGFX:vns6iRbEDa3WVEy2ANGweyIYUtXXqmGV

Score

N/A

Malware Config

Signatures

Files

94124e38e30506975f8687173b901af47a511731a481b0f750b6f18ed093e023
.exe windows x86

db3fd5db2caf9d9bc606fbf7660c990a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
CreateEventW
RemoveDirectoryA
CreateFileA
SetEvent
HeapFree
GetModuleHandleA
GetCommandLineA
WriteConsoleW
OpenEventA
GetFileType
CreateFileMappingW
WriteFile
SetStdHandle
CreateMailslotW
FindClose
VirtualProtectEx
ResetEvent
ReleaseMutex
GetLastError
RemoveDirectoryA
DeleteFileA
FindClose
Sleep
CreateDirectoryW

cryptui

CryptUIDlgViewContext
WizardFree
WizardFree
CryptUIWizBuildCTL
LocalEnroll
CryptUIDlgFreeCAContext
DllUnregisterServer
DllRegisterServer
LocalEnrollNoDS
CryptUIStartCertMgr
CryptUIWizExport
CryptUIWizDigitalSign
CryptUIWizImport

dbnmpntw

ConnectionClose
ConnectionClose
ConnectionClose
ConnectionClose

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy