9b794e05a9bfe62fda4200f326b1c5af2b3b38dcfb240c1e0b6053db7f6dee77 | Triage

Submit
Reports

Overview

overview

8

Static

static

9b794e05a9...77.exe

windows7-x64

8

9b794e05a9...77.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9b794e05a9bfe62fda4200f326b1c5af2b3b38dcfb240c1e0b6053db7f6dee77.exe

Resource

win7-20220901-en

evasion persistence upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

9b794e05a9bfe62fda4200f326b1c5af2b3b38dcfb240c1e0b6053db7f6dee77.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

9b794e05a9bfe62fda4200f326b1c5af2b3b38dcfb240c1e0b6053db7f6dee77
Size

249KB
MD5

4d9982ad876f10228b971ebe94383e79
SHA1

602c9cc78e5d5ce29bcc56977580433f4f521472
SHA256

9b794e05a9bfe62fda4200f326b1c5af2b3b38dcfb240c1e0b6053db7f6dee77
SHA512

bae39101141cdb009fe841d6e3a852a5b95e1f0a5333418e443c694899d2b8a6a6358ef746580fdf2b54e8a8e98b03c125236e1e212c77c8cc6bf266679453d2
SSDEEP

6144:GxDC7p/mXYZiFudvV8Bwq/H0ZkavDDqH42x:GxgJZd1YHSvDD+D

Score

N/A

Malware Config

Signatures

Files

9b794e05a9bfe62fda4200f326b1c5af2b3b38dcfb240c1e0b6053db7f6dee77
.exe windows x86

6a1c2ec56319049ebceee31b8f2cb6a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
GetTickCount
GetEnvironmentVariableA
CreateFileA
GetStartupInfoW
GetCurrentDirectoryA
GetModuleHandleA
HeapSize
IsBadCodePtr
FindAtomA
ResumeThread
HeapDestroy
FindClose
SetEndOfFile
ExitProcess
DeleteFileA
InitializeCriticalSection
WaitForSingleObject
HeapCreate
ReleaseMutex
GetTickCount
GetFileSize
FindClose
ResetEvent
CloseHandle

wininet

FtpFindFirstFileA
FtpCreateDirectoryA
FindCloseUrlCache
FtpOpenFileA
DeleteUrlCacheEntryA
FtpDeleteFileA
FtpPutFileA
HttpEndRequestA
FtpGetCurrentDirectoryA
HttpQueryInfoA
FtpGetFileA
DeleteUrlCacheEntryA
DeleteUrlCacheEntryA

rasser

PortClose
PortClose
PortClose
PortClose

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy