85a117d391c4391ce3076036ad2e06c11cdff18a818f2c8d1c2b545a1094d3ac | Triage

Submit
Reports

Overview

overview

8

Static

static

85a117d391...ac.exe

windows7-x64

8

85a117d391...ac.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

85a117d391c4391ce3076036ad2e06c11cdff18a818f2c8d1c2b545a1094d3ac.exe

Resource

win7-20221111-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

85a117d391c4391ce3076036ad2e06c11cdff18a818f2c8d1c2b545a1094d3ac.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

85a117d391c4391ce3076036ad2e06c11cdff18a818f2c8d1c2b545a1094d3ac
Size

327KB
MD5

46a9eb8579ee4bd96d8690065575f3e7
SHA1

f95379283f1a36e040aa3348fff0afddbda144ae
SHA256

85a117d391c4391ce3076036ad2e06c11cdff18a818f2c8d1c2b545a1094d3ac
SHA512

79ad726eb4394ea5e9db9b14ea3d4e6dcecbeb0528875c92f986a2dce4c97fd8ed1cc28cc0869854aa0a15a23cbb15f9c2fff8c3df4c2491fb380e36a2ac2d2f
SSDEEP

6144:IQTPaaaX5FNzsSYK7bC8tTO3rQyxAgqtJr/BpQ/Nk6eQVsGxUKe:TzaXJ71CSObQyxFqP/nSNfVsGxB

Score

N/A

Malware Config

Signatures

Files

85a117d391c4391ce3076036ad2e06c11cdff18a818f2c8d1c2b545a1094d3ac
.exe windows x86

d8ad9de8d6a2181f266027d6cee1aabe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
TlsGetValue
EnumResourceTypesA
GetModuleHandleA
CloseHandle
GetDriveTypeW
Sleep
LocalFree
GetDateFormatA
FindClose
GetLastError
FreeConsole
GetCommandLineA
LoadLibraryExW
PulseEvent
IsBadReadPtr
DeleteCriticalSection
GetDiskFreeSpaceExA
IsBadCodePtr
VirtualProtect

advapi32

LsaFreeMemory
AccessCheck
OpenEventLogA
RegCreateKeyExA
GetFileSecurityA
RegLoadKeyA
CloseEventLog
FreeSid
CloseTrace
IsValidSid
LsaClose
LsaSetSecret
RegCloseKey
RegCloseKey

clbcatq

ComPlusMigrate
SetSetupOpen
GetCatalogObject
DowngradeAPL
GetComputerObject

Sections

.text
Size: 3KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy