59770c136d99e4f2070d817959a44a4dde909cc6d2c25da66b66b4b1662e5ed5 | Triage

Submit
Reports

Overview

overview

1

Static

static

59770c136d...d5.exe

windows7-x64

59770c136d...d5.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

59770c136d99e4f2070d817959a44a4dde909cc6d2c25da66b66b4b1662e5ed5.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

59770c136d99e4f2070d817959a44a4dde909cc6d2c25da66b66b4b1662e5ed5.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

59770c136d99e4f2070d817959a44a4dde909cc6d2c25da66b66b4b1662e5ed5
Size

171KB
MD5

aa88c572510c86848e0bbb6a1ba6c50c
SHA1

bc27bd42407c4aa808e7dca14b8dab1ed5252ae6
SHA256

59770c136d99e4f2070d817959a44a4dde909cc6d2c25da66b66b4b1662e5ed5
SHA512

e70b33e4a870d9719cc2dc8229a498310590f3c8576caaaeb87f622de5cb60ea2219671a64fe9a965c6075f9e63284ba4a494f71b913ebfa083839f9b3dafe0b
SSDEEP

3072:lgK6Nv4KOrxqOJZZSarQhljOz8cGVQiVDp+oYLbt/4LPF11PtsKWJATW0xXp/p3B:qKdBnRQhljOgcGV7VDUoAWFWjJR0P8N8

Score

N/A

Malware Config

Signatures

Files

59770c136d99e4f2070d817959a44a4dde909cc6d2c25da66b66b4b1662e5ed5
.exe windows x86

dccee103856dbd954f32a9f2be3a8617

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

winspool.drv

ClosePrinter

kernel32

GetVersionExA
FreeLibrary
GetTempPathA
LoadLibraryA
LoadLibraryA
CreateProcessA
DeleteFileA
GetVersionExA
CreateDirectoryA
GetFileAttributesA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
FlushInstructionCache
VirtualQuery
GetVersion
SetLastError
CloseHandle
QueryPerformanceCounter

shell32

SHLimitInputEdit
ShellExecuteA

advapi32

RegQueryValueExW
RegOpenKeyExW
ElfOldestRecord
RegSetValueExW
RegCreateKeyExW
RegCloseKey

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy