871000196b33577d169a01578ab805ecf8ecdeb5e8343c9530ef9eef576d5dfe | Triage

Submit
Reports

Overview

overview

8

Static

static

871000196b...fe.exe

windows7-x64

8

871000196b...fe.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

871000196b33577d169a01578ab805ecf8ecdeb5e8343c9530ef9eef576d5dfe.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

871000196b33577d169a01578ab805ecf8ecdeb5e8343c9530ef9eef576d5dfe.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

871000196b33577d169a01578ab805ecf8ecdeb5e8343c9530ef9eef576d5dfe
Size

812KB
MD5

b12785650bfa9512973d256cbd26b1ff
SHA1

5f8ed82247cf1baaf64cdb93aee30dd60bb65e0f
SHA256

871000196b33577d169a01578ab805ecf8ecdeb5e8343c9530ef9eef576d5dfe
SHA512

0afea832636e45859363d316f9c02f8b689d570caed48d51d706508c6301a1527cf81c36df7e33852747137a8580520720e3e2206eec1e07bf33eea3d595e7bb
SSDEEP

12288:5zAiLi7iMQKCPZP+igw2XJmuo0dz2jlLeCYRWwVDQkkfmaJnrawWSsB5DLxhrOyl:9diubbDZ25UqiCCYRdxQVeaJrawWTD

Score

N/A

Malware Config

Signatures

Files

871000196b33577d169a01578ab805ecf8ecdeb5e8343c9530ef9eef576d5dfe
.exe windows x86

1121fd1afb6eaed2ef0577b445a76a3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceTypesW
GetEnvironmentVariableA
GetStartupInfoA
FileTimeToSystemTime
GetCommandLineA
lstrlenW
OpenEventA
HeapDestroy
GetModuleHandleA
Sleep
CreateSemaphoreA
CloseHandle
WriteConsoleA
FindClose
HeapCreate
CloseHandle
DeleteFileA
SuspendThread
SetLastError
GetCommandLineA

user32

GetSysColor
DispatchMessageA
GetClassInfoA
DrawTextW
CallWindowProcW
GetKeyState
IsZoomed
GetClipCursor
GetWindowLongA
PeekMessageA
DispatchMessageA
CreateIcon
FindWindowA

dmband

DllRegisterServer
DllRegisterServer
DllRegisterServer
DllRegisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 806KB - Virtual size: 805KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy