a88ba3767fc636aa5661a17f443c63db71292dcfeb4bf35e32c5d999e922ee53 | Triage

Submit
Reports

Overview

overview

8

Static

static

a88ba3767f...53.exe

windows7-x64

8

a88ba3767f...53.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a88ba3767fc636aa5661a17f443c63db71292dcfeb4bf35e32c5d999e922ee53.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a88ba3767fc636aa5661a17f443c63db71292dcfeb4bf35e32c5d999e922ee53.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a88ba3767fc636aa5661a17f443c63db71292dcfeb4bf35e32c5d999e922ee53
Size

749KB
MD5

4b3e1886d2812a4f3ab686c640f81470
SHA1

a3d90d81358dd0d44b0edfd7f5ea08ceda34445b
SHA256

a88ba3767fc636aa5661a17f443c63db71292dcfeb4bf35e32c5d999e922ee53
SHA512

82a0d5fb3e5d308835e3c1106fe8fbe2c2651da9727da141028318b2961d1e40bd1138ade2effed61830a79446cb2ac34295bdeebfc5bf6146b63cd93dab70d4
SSDEEP

12288:CC2aLuykOeB5ubvQPsH9DrhK9fVy0kbBsPOUz0HH7Q0iBXz0cdOBnuuolH:CCxyyFeB4H9DroYpbBmOUgHjiBXzPmut

Score

N/A

Malware Config

Signatures

Files

a88ba3767fc636aa5661a17f443c63db71292dcfeb4bf35e32c5d999e922ee53
.exe windows x86

4195cb9c7ff57ce50c0abf16f15dae33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryA
DeleteFileA
OpenEventA
FindClose
GetModuleHandleA
CreateFileA
lstrlenA
CreateEventW
SetEvent
CreateFileMappingW
ReleaseMutex
VirtualProtectEx
Sleep
GetLastError
WriteFile
WriteConsoleW
ResetEvent
GetCommandLineA
SetStdHandle
GetFileType
CreateMailslotW
FindClose
RemoveDirectoryA
CreateDirectoryW
HeapFree

cryptui

CryptUIWizImport
WizardFree
WizardFree
CryptUIWizExport
LocalEnroll
CryptUIDlgFreeCAContext
DllRegisterServer
CryptUIStartCertMgr
CryptUIWizDigitalSign
DllUnregisterServer
CryptUIDlgViewContext
LocalEnrollNoDS
CryptUIWizBuildCTL

dbnmpntw

ConnectionClose
ConnectionClose
ConnectionClose
ConnectionClose

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy