575777b519d8c84321b73ec1259798ca49788974ef985a4170be6d344c2214ce | Triage

Submit
Reports

Overview

overview

8

Static

static

575777b519...ce.exe

windows7-x64

8

575777b519...ce.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

575777b519d8c84321b73ec1259798ca49788974ef985a4170be6d344c2214ce.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

575777b519d8c84321b73ec1259798ca49788974ef985a4170be6d344c2214ce.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

575777b519d8c84321b73ec1259798ca49788974ef985a4170be6d344c2214ce
Size

749KB
MD5

c0659d22046a908c32b7c402171fa9ec
SHA1

f0501f81f9181c354768385c5f0096def211f734
SHA256

575777b519d8c84321b73ec1259798ca49788974ef985a4170be6d344c2214ce
SHA512

a01485c61baf42d6e575b9e356c7567cc07fdbf6d98226282b5e4ea5ff5652da371f9d98e554d945af8d14144f421094777f2fe979b7dfe951c2b9cd64a4b2df
SSDEEP

12288:XYEJhdXZkyDiW1XYh0PvF27Os4YjcW+RQIk8xktRowWfZ9fVPsigZ1sC0dHVrtof:XYYhd2yDiWdYilCOFB9Rg8kolZ1VEigL

Score

N/A

Malware Config

Signatures

Files

575777b519d8c84321b73ec1259798ca49788974ef985a4170be6d344c2214ce
.exe windows x86

0505944f04237373d67ddd29e3849b18

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
lstrlenA
RemoveDirectoryA
GetLastError
SetStdHandle
CreateEventW
WriteFile
GetModuleHandleA
CreateMailslotW
Sleep
SetEvent
CreateFileA
GetCommandLineA
GetFileType
VirtualProtectEx
OpenEventA
FindClose
DeleteFileA
WriteConsoleW
HeapFree
CreateFileMappingW
FindClose
RemoveDirectoryA
CreateDirectoryW
ReleaseMutex

cryptui

WizardFree
CryptUIWizImport
DllUnregisterServer
CryptUIWizExport
CryptUIWizDigitalSign
CryptUIDlgFreeCAContext
CryptUIDlgViewContext
DllRegisterServer
CryptUIStartCertMgr
LocalEnroll
WizardFree
LocalEnrollNoDS
CryptUIWizBuildCTL

dbnmpntw

ConnectionClose
ConnectionClose
ConnectionClose
ConnectionClose

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy