c0ccfde549557b8da1a78b0473a213d4301c208a4ce330e862a0f5cc6ad47816 | Triage

Submit
Reports

Overview

overview

7

Static

static

win32ip.exe

windows7-x64

1

win32ip.exe

windows10-2004-x64

1

zlip.cpl

windows7-x64

1

zlip.cpl

windows10-2004-x64

1

zlip.exe

windows7-x64

6

zlip.exe

windows10-2004-x64

7

zlip1.cpl

windows7-x64

1

zlip1.cpl

windows10-2004-x64

1

zlip2.cpl

windows7-x64

1

zlip2.cpl

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

win32ip.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

win32ip.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

zlip.cpl

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

zlip.cpl

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

zlip.exe

Resource

win7-20220812-en

discovery persistence

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral6

Sample

zlip.exe

Resource

win10v2004-20220812-en

discovery persistence

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral7

Sample

zlip1.cpl

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

zlip1.cpl

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

zlip2.cpl

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

zlip2.cpl

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

c0ccfde549557b8da1a78b0473a213d4301c208a4ce330e862a0f5cc6ad47816
Size

503KB
MD5

9d4a8e7bcf03146077025d69321c2802
SHA1

6b17f7bc05232df2a065aeadce8e55b3d4d6bba6
SHA256

c0ccfde549557b8da1a78b0473a213d4301c208a4ce330e862a0f5cc6ad47816
SHA512

f52dd00dd9ff802905ae7347b5b6000e261b29ebd1c755377f204f46936018a88b6317dc1cf2fecdea60676c3d961382f62bd98d0b35156f31df81dea8b65bff
SSDEEP

12288:ZaPRPRnQ2CcCeYiYcwGlm/4/F9WouuqqMBnzP:8focDYam/49qqMBL

Score

N/A

Malware Config

Signatures

Files

c0ccfde549557b8da1a78b0473a213d4301c208a4ce330e862a0f5cc6ad47816
.cab
win32ip.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 292B - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 17KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
zlip.cpl
zlip.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 206B - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 482KB - Virtual size: 490KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
zlip1.cpl
zlip2.cpl

© 2018-2025

Terms | Privacy