97e12e094270c3cfb2477d3e8c56c04f8abb5811957d8e550755414da78e8afe | Triage

Submit
Reports

Overview

overview

7

Static

static

97e12e0942...fe.exe

windows7-x64

7

97e12e0942...fe.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

97e12e094270c3cfb2477d3e8c56c04f8abb5811957d8e550755414da78e8afe.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

97e12e094270c3cfb2477d3e8c56c04f8abb5811957d8e550755414da78e8afe.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

97e12e094270c3cfb2477d3e8c56c04f8abb5811957d8e550755414da78e8afe
Size

192KB
MD5

1f3184a7b0f098a9a8e775f463a2ca3c
SHA1

79629df71935d44b0ea2a59b73672b2912c6f76f
SHA256

97e12e094270c3cfb2477d3e8c56c04f8abb5811957d8e550755414da78e8afe
SHA512

19163ed30ff8a8277b6e198d2e2a9671f1c24c3450a69136f832749d94b2074635eae2849aa16552b67f24bdd405e28f573acc24801c948266fd877e1fa6e3ff
SSDEEP

768:pBPrQpr5IenhRHycITlAI1hGqrIfxQHp6++gL4h9AlpppppplfiZ+R4Ror9+FuPV:H83I8fy9TlHbjHoBhC6owFuPNEuT

Score

N/A

Malware Config

Signatures

Files

97e12e094270c3cfb2477d3e8c56c04f8abb5811957d8e550755414da78e8afe
.exe windows x86

389e156c504a58df350db1539c3a9c49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileW
HeapCreate
GetEnvironmentVariableA
GetModuleHandleA
MapViewOfFile
GetCommandLineA
GetFileAttributesA
FindAtomA
CloseHandle
DeleteAtom
IsBadCodePtr
GetStartupInfoA
HeapDestroy
GetStdHandle
CreateFileA
TlsGetValue
GetCommandLineA
GetPriorityClass
GetModuleFileNameA
ReadFile

user32

DrawTextW
CallWindowProcW
GetSysColor
DispatchMessageA
IsZoomed
DispatchMessageA
SetFocus
GetKeyState
GetWindowInfo
FindWindowA
GetClassInfoA
GetWindowLongA
DestroyMenu
DestroyMenu

ntlanman

NPGetCaps
NPGetCaps
NPGetCaps
NPGetCaps

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 182KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy