738b86776c17aeed2b3e29490dd7c0e9bdf3f7eadc79b605acaba3724e452eed | Triage

Submit
Reports

Overview

overview

8

Static

static

738b86776c...ed.exe

windows7-x64

8

738b86776c...ed.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

738b86776c17aeed2b3e29490dd7c0e9bdf3f7eadc79b605acaba3724e452eed.exe

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

738b86776c17aeed2b3e29490dd7c0e9bdf3f7eadc79b605acaba3724e452eed.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

738b86776c17aeed2b3e29490dd7c0e9bdf3f7eadc79b605acaba3724e452eed
Size

21KB
MD5

873514c54ac9f451006af96705ec796f
SHA1

2221c31a31e51c836e0f28e1ef7d1667cc3052e1
SHA256

738b86776c17aeed2b3e29490dd7c0e9bdf3f7eadc79b605acaba3724e452eed
SHA512

724c5a5099b1cc69e67ae4af44b44546a066351fd843c3bcefab22330e1db5ae60b1b0eef9cbbb53d18968bb35680a559b97025433c0b1f003ded204d2eff207
SSDEEP

384:8uGmt4Zai+mC6VNwUKNIfL8qkA+C2tDs:85mtOazmHVNwRIfLqn

Score

N/A

Malware Config

Signatures

Files

738b86776c17aeed2b3e29490dd7c0e9bdf3f7eadc79b605acaba3724e452eed
.exe windows x86

dca12024ac482f02e91b0bf128fa5aa5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetTickCount
ResumeThread
WaitForSingleObject
GetTickCount
HeapCreate
HeapSize
AddAtomW
SetEndOfFile
InitializeCriticalSection
CloseHandle
GetModuleHandleA
ExitProcess
FindClose
FindClose
GetFileSize
SetFileAttributesA
HeapDestroy
DeleteFileA
GetEnvironmentVariableA
CreateMutexW
ReleaseMutex
GetCurrentDirectoryA
GetStartupInfoW
ResetEvent

wininet

FtpGetCurrentDirectoryA
FtpCreateDirectoryA
FindCloseUrlCache
DeleteUrlCacheEntryA
HttpQueryInfoA
DeleteUrlCacheEntryA
FtpDeleteFileA
HttpEndRequestA
FtpPutFileA
FtpOpenFileA
DeleteUrlCacheEntryA
FtpFindFirstFileA
FtpGetFileA

qmgrprxy

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy