839b4baa551ca71753994e4bf879f58c425dacefe4d2689097bfe02eaee3921a | Triage

Submit
Reports

Overview

overview

Static

static

839b4baa55...1a.exe

windows7-x64

839b4baa55...1a.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

839b4baa551ca71753994e4bf879f58c425dacefe4d2689097bfe02eaee3921a.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

839b4baa551ca71753994e4bf879f58c425dacefe4d2689097bfe02eaee3921a.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

839b4baa551ca71753994e4bf879f58c425dacefe4d2689097bfe02eaee3921a
Size

196KB
MD5

49a2d19637804a785b6ddf5cb6bb16ed
SHA1

3b6e79a8208c58a56a1586cf5477812e4a3b9aeb
SHA256

839b4baa551ca71753994e4bf879f58c425dacefe4d2689097bfe02eaee3921a
SHA512

8db861742a99e3d1169d7f8ef4710851154531bb4f62c44fb935582963f3f2276836146e7e2955041216a0f01d7b83fb99af3eebc73e8d0e6123362e5bd683af
SSDEEP

3072:WB7WtowMfN0ztRYR8u7ivSd82laHSmM7N795rj2EtUNmpKIQTZxqcW/:mitjMfyhRYb7iKG2laymo5JUN4+c

Score

N/A

Malware Config

Signatures

Files

839b4baa551ca71753994e4bf879f58c425dacefe4d2689097bfe02eaee3921a
.exe windows x86

57f4bb022e1b17e64faaa2b05d4c7963

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryW

kernel32

GetSystemTimeAsFileTime
LocalFree
GetCPInfo
GlobalFlags
FindClose
GetModuleHandleW
GetComputerNameExW
SetSystemTimeAdjustment

comdlg32

PageSetupDlgW
GetOpenFileNameW

user32

InvalidateRgn
RedrawWindow
GetNextDlgTabItem
AdjustWindowRect
RegisterClassExA
GetCaretPos
InternalGetWindowText
SetRect
CreateCaret
GetForegroundWindow
CreateWindowExA
SetWindowLongW
DispatchMessageW
PtInRect
CopyImage
ReleaseDC

gdi32

ResizePalette
SetDIBitsToDevice
GetDeviceCaps
EnumFontsW
LineDDA
StartDocW
AddFontResourceW

comctl32

ImageList_Draw
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Remove

Exports

Exports

ModifyMutexOriginal@16
SendWindowOld@12
LoadVersionOriginal@8
List@8
EnumListItemOld@12

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy