855f08584e97fcb6fd5dc57978cfd4ba0548a634781e111c5b1c9f89da6ac1a2 | Triage

Submit
Reports

Overview

overview

8

Static

static

855f08584e...a2.exe

windows7-x64

8

855f08584e...a2.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

855f08584e97fcb6fd5dc57978cfd4ba0548a634781e111c5b1c9f89da6ac1a2.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

855f08584e97fcb6fd5dc57978cfd4ba0548a634781e111c5b1c9f89da6ac1a2.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

855f08584e97fcb6fd5dc57978cfd4ba0548a634781e111c5b1c9f89da6ac1a2
Size

814KB
MD5

ec693d3654abf6dc47d40e4f5b90b17e
SHA1

4a72ed82116c749c4743e472a04851f1950a51ac
SHA256

855f08584e97fcb6fd5dc57978cfd4ba0548a634781e111c5b1c9f89da6ac1a2
SHA512

b56fbde3721fbb5a59b75802a5845cf7923890bbeb9a09f01747e4d04d03254a816f6be386bb7e56365c4925c4cfe21f3f35c62f69cd95da42d8f6fee0c55b02
SSDEEP

24576:Z4TtcLfMefIgqeOBzOprwyq/22E94cBDoxwiu:ZMtiUezqeOpOpsBE94cBUxS

Score

N/A

Malware Config

Signatures

Files

855f08584e97fcb6fd5dc57978cfd4ba0548a634781e111c5b1c9f89da6ac1a2
.exe windows x86

457ce6188cea4f51f1b5008bd521dc81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
SetLastError
CloseHandle
DeleteFileA
GetCommandLineW
SuspendThread
GetVersion
GetModuleHandleA
CreateSemaphoreW
HeapDestroy
FindClose
Sleep
CloseHandle
HeapCreate
GetEnvironmentVariableW
ExitProcess
lstrlenW
FindResourceExA
OpenEventA
WriteConsoleA

user32

CreateIcon
IsZoomed
GetSysColor
DispatchMessageA
GetWindowLongA
CallWindowProcW
DrawTextW
FindWindowA
GetKeyState
DispatchMessageA
PeekMessageA
SetFocus
GetClassInfoA

docprop

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 806KB - Virtual size: 806KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy