82d4d1addb018a86984933d20aa2cfdf8994270796bb7bce383e9dbd9393c437 | Triage

Submit
Reports

Overview

overview

Static

static

82d4d1addb...37.exe

windows7-x64

82d4d1addb...37.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

82d4d1addb018a86984933d20aa2cfdf8994270796bb7bce383e9dbd9393c437.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

82d4d1addb018a86984933d20aa2cfdf8994270796bb7bce383e9dbd9393c437.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

82d4d1addb018a86984933d20aa2cfdf8994270796bb7bce383e9dbd9393c437
Size

291KB
MD5

0733bd27ec2f1801a52bbdcefb4584a9
SHA1

2f5fead2ef012f42d67376c564defa24a10ec820
SHA256

82d4d1addb018a86984933d20aa2cfdf8994270796bb7bce383e9dbd9393c437
SHA512

002b02538416a0a0c80883a2d97aa5c9bd6d315c0ca84fbee8b163b0f5cc0f9bace276faf79284209a6cb8f26a98ddd272a5731928da237137c8c249bf7d63cb
SSDEEP

6144:oiKol9wG8Xndlj3eCgyJ6eI5RHzCOdkQtDN:hKQ998XndlzeQ/IDHzRkQtDN

Score

N/A

Malware Config

Signatures

Files

82d4d1addb018a86984933d20aa2cfdf8994270796bb7bce383e9dbd9393c437
.exe windows x86

44acb762461e5564783f45d4e45f0a41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxIndirectA

gdi32

GetDeviceCaps
BitBlt
DeleteDC
SelectObject
CreateCompatibleBitmap
GetObjectA
DeleteObject
GetBitmapBits
CreateCompatibleDC
CreateDCA

kernel32

SetLastError
GlobalMemoryStatus
FreeLibrary
CloseHandle
GetFileType
FlushConsoleInputBuffer
GetThreadTimes
GetCurrentThreadId
GetStdHandle
HeapCreate
VirtualAllocEx

wsock32

recv
ntohs
setsockopt
WSACancelBlockingCall
WSACleanup
getservbyname
gethostbyname
ntohl
inet_ntoa
WSASetLastError
accept
htons
listen
bind
connect
getsockopt
WSAStartup
WSAGetLastError
closesocket
htonl
send
shutdown
socket

atmlib

ATMFinish
ATMGetNtmFields
ATMMakePSS
ATMGetFontInfo
ATMGetVersion
ATMFontSelected
ATMGetVersionExW

atl

AtlModuleRevokeClassObjects
DllCanUnloadNow
AtlAxDialogBoxA
AtlModuleTerm
AtlWaitWithMessageLoop

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy