fa0da4c86ebd615d64ceb9632bc0911f13c5be68f86cbfd5a4556da434c530a9 | Triage

Submit
Reports

Overview

overview

7

Static

static

fa0da4c86e...a9.exe

windows7-x64

7

fa0da4c86e...a9.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fa0da4c86ebd615d64ceb9632bc0911f13c5be68f86cbfd5a4556da434c530a9.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

fa0da4c86ebd615d64ceb9632bc0911f13c5be68f86cbfd5a4556da434c530a9.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

fa0da4c86ebd615d64ceb9632bc0911f13c5be68f86cbfd5a4556da434c530a9
Size

1.7MB
MD5

65d41eec49aa698822aafe942aab9054
SHA1

fcdf205b319b77b06d72bdc74180d862b1bd1a91
SHA256

fa0da4c86ebd615d64ceb9632bc0911f13c5be68f86cbfd5a4556da434c530a9
SHA512

1afa666c39893a912192498b6d1fcd489af1a46d0ed48664e0bf000dc953a011d06bd5ea23e6115666b896b97f1283cbc05059de510a9e39178a4f9635d41633
SSDEEP

24576:n+WoeZ54Zeyn+Q+N7yWOSi00cbC7bXOKTjXn7siedrtcQZi66zL75FbNJdBuWyuS:V+eyIWWHHaT7EdxcQsHP73xJ7uW+PX

Score

N/A

Malware Config

Signatures

Files

fa0da4c86ebd615d64ceb9632bc0911f13c5be68f86cbfd5a4556da434c530a9
.exe windows x86

0ed1fab8bdc0d1af28338b04132d2583

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString
GetErrorInfo
SafeArrayPtrOfIndex

advapi32

RegQueryValueExA
RegQueryValueExA

user32

GetKeyboardType
CreateWindowExA

kernel32

GetACP
TlsSetValue
lstrcpyA
Sleep

gdi32

UnrealizeObject

version

VerQueryValueA

ole32

CoTaskMemFree

comctl32

_TrackMouseEvent

wininet

InternetReadFile

shell32

Shell_NotifyIconA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 433KB - Virtual size: 912KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy