4935dbb127d3a2bd15b45b6680e21f156d5227d60b9fa87dbc36ccce053529a6 | Triage

Submit
Reports

Overview

overview

Static

static

4935dbb127...a6.exe

windows7-x64

4935dbb127...a6.exe

windows10-2004-x64

5

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4935dbb127d3a2bd15b45b6680e21f156d5227d60b9fa87dbc36ccce053529a6.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

4935dbb127d3a2bd15b45b6680e21f156d5227d60b9fa87dbc36ccce053529a6.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

4935dbb127d3a2bd15b45b6680e21f156d5227d60b9fa87dbc36ccce053529a6
Size

58KB
MD5

fb0b9ce22fb5f20dda1297d67a5439cf
SHA1

9eaa4a4f427e52ad2a9716abfae1b21d31e5dc3c
SHA256

4935dbb127d3a2bd15b45b6680e21f156d5227d60b9fa87dbc36ccce053529a6
SHA512

8483f4ae2ddcf2b04e0b1334034039b54d958b9ef93499cf76b64ada8f60abb072f3d4c4e573b63579abc51f6478e859966dc1c6484586a2e396dccfb004b461
SSDEEP

1536:ui4BAVsJpVOSEYPPwYYLUis5um5D9/5IcnJ5MiL:uiU+YNh1uPWuo1J9

Score

N/A

Malware Config

Signatures

Files

4935dbb127d3a2bd15b45b6680e21f156d5227d60b9fa87dbc36ccce053529a6
.exe windows x86

e20235b21b3e39b1fee6ed5375d6b3bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
IsValidLocale
GetLogicalDriveStringsA
OpenMutexA
lstrcmpiA
lstrcmpiA
lstrlenA
DeleteFileA
CreateMailslotA
GetDriveTypeW
lstrcmpiA
FileTimeToLocalFileTime
GetProcessHeap
lstrcmpiA
GetStdHandle
GetVolumePathNameA
GetModuleHandleA
WaitForMultipleObjects
Sleep
SetLastError
CreateNamedPipeA
GetModuleFileNameA
lstrcmpiA

scecli

DeltaNotify
SceSysPrep
SceOpenPolicy
InitializeChangeNotify

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy