57118cea77cd5b5d26b770f65819995bcc6244365f87d128d6a7b317f39c3f8a | Triage

Submit
Reports

Overview

overview

8

Static

static

57118cea77...8a.exe

windows7-x64

8

57118cea77...8a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

57118cea77cd5b5d26b770f65819995bcc6244365f87d128d6a7b317f39c3f8a.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

57118cea77cd5b5d26b770f65819995bcc6244365f87d128d6a7b317f39c3f8a.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

57118cea77cd5b5d26b770f65819995bcc6244365f87d128d6a7b317f39c3f8a
Size

767KB
MD5

12196eb70f3414cce1909a3e3c0ddcda
SHA1

25aa9ae4680b286cbb91c874c0e4ab93ba3e8749
SHA256

57118cea77cd5b5d26b770f65819995bcc6244365f87d128d6a7b317f39c3f8a
SHA512

e56d5bdf233c8c39681595f651591307ee962f3927c3a68df74dfdf321f0b9414c860d675190b30401d763a6e06200cc680dc202b817fc2ef6b1fc9f58ef7dc9
SSDEEP

12288:vTlT3zTV/+kv1mTc3gTdJA4EuC3efHTv2LTnQUGO/0LQT8VjT956+:vJvTV/9vko3SEuC3efULQM8QCjTz

Score

N/A

Malware Config

Signatures

Files

57118cea77cd5b5d26b770f65819995bcc6244365f87d128d6a7b317f39c3f8a
.exe windows x86

3ae4ee1abadd839ec6ef704cff4e44d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
lstrlenA
GetVersion
HeapDestroy
MapViewOfFile
GetFileSize
SetLastError
SetLastError
RemoveDirectoryW
CreateFileA
GetStdHandle
VirtualProtectEx
CreateDirectoryW
LoadLibraryA
CreateFileMappingW
OpenEventW
RemoveDirectoryW
CreateMutexA
GetStartupInfoA
ReleaseMutex
HeapSize
CreatePipe
ExitProcess
GetCommandLineW
ReleaseSemaphore

uxtheme

CloseThemeData
CloseThemeData
SetWindowTheme
GetThemeTextMetrics
DrawThemeEdge
GetThemeTextExtent
OpenThemeData
GetThemeSysSize
IsThemeActive
GetWindowTheme
DrawThemeBackground
GetThemeColor
GetThemeBool

feclient

FeClientInitialize
FeClientInitialize
FeClientInitialize
FeClientInitialize

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy