596e2e7d0dbc746897609f20c9901bc924f7ebdb284d78e5fd228e9bad569198 | Triage

Submit
Reports

Overview

overview

8

Static

static

596e2e7d0d...98.exe

windows7-x64

8

596e2e7d0d...98.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

596e2e7d0dbc746897609f20c9901bc924f7ebdb284d78e5fd228e9bad569198.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

596e2e7d0dbc746897609f20c9901bc924f7ebdb284d78e5fd228e9bad569198.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

596e2e7d0dbc746897609f20c9901bc924f7ebdb284d78e5fd228e9bad569198
Size

789KB
MD5

d472610eab599deb0cd5f4b94bd7cace
SHA1

cb5a6106094b8eb9cfa57ea43a66485dd3a62c6f
SHA256

596e2e7d0dbc746897609f20c9901bc924f7ebdb284d78e5fd228e9bad569198
SHA512

cfc16a4c660ddd81821564e3cff6b167b40d83e03a8527ade0fcdee2d2d5fa148a4ccb3ae574e6b3b95fcdbb0443c1d2c708b8c0a3a6fda2ed1458ab869c6c13
SSDEEP

24576:B2DIuZNmDoHcri+sk2u62JXYBAkbI+B0nZ:UD4DoHcrzeW1PkHKnZ

Score

N/A

Malware Config

Signatures

Files

596e2e7d0dbc746897609f20c9901bc924f7ebdb284d78e5fd228e9bad569198
.exe windows x86

2a5033c88f31e7e18406a02a12982ce0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
FindResourceA
CloseHandle
Sleep
GetStdHandle
CreateMutexA
SetEnvironmentVariableA
HeapCreate
GlobalUnlock
GetModuleHandleA
CreateFileA
SetLastError
TlsGetValue
GetCurrentThreadId
GetPriorityClass
LocalFree
TerminateThread
lstrlenW
GetConsoleMode
ReleaseMutex

user32

CallWindowProcA
SetFocus
GetDlgItem
IsWindow
DrawMenuBar
CheckRadioButton
GetIconInfo
DrawEdge
FillRect
GetDC
DispatchMessageA
CopyRect
GetCaretPos

apphelp

SdbCloseDatabase
SdbFindFirstTag
ApphelpCheckIME
SdbFindNextTag
SdbGetDatabaseID

clbcatq

ComPlusMigrate

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 765KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy