78d788eacaad4efe273f6204c2fbba1030dd317d743b1159031afd455b8bc4d9 | Triage

Submit
Reports

Overview

overview

8

Static

static

78d788eaca...d9.exe

windows7-x64

8

78d788eaca...d9.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

78d788eacaad4efe273f6204c2fbba1030dd317d743b1159031afd455b8bc4d9.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

78d788eacaad4efe273f6204c2fbba1030dd317d743b1159031afd455b8bc4d9.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

78d788eacaad4efe273f6204c2fbba1030dd317d743b1159031afd455b8bc4d9
Size

768KB
MD5

fc99cafeda7963b0d4895c7450322397
SHA1

5e19d494c7fddc7603e5f9e620e01478d41c0d2f
SHA256

78d788eacaad4efe273f6204c2fbba1030dd317d743b1159031afd455b8bc4d9
SHA512

89e52422234fd975139047ae9892eb9b4a72297d410a42f73f1f2d0a35d911fb2fffaa382a78819457b0156a4b64e2fb56c6c2e51bf009b0585750dc2293083a
SSDEEP

24576:HQsn1COgvhHFHLS9LFnbrLKVs/yx9ovE2PCFdl:H7UOgp56J3Kau9odCFdl

Score

N/A

Malware Config

Signatures

Files

78d788eacaad4efe273f6204c2fbba1030dd317d743b1159031afd455b8bc4d9
.exe windows x86

aca55f89f5ccbacbd022ba229e216409

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
Sleep
DeleteFileW
GetLocalTime
HeapSize
VirtualProtectEx
CreateHardLinkW
SetEvent
GetTickCount
CreateMutexA
CreateSemaphoreA
SetLastError
GetProcessHeap
GlobalFree
ReadConsoleW
SetLastError
GetStartupInfoA
GetFileAttributesA
LoadLibraryA
CloseHandle
CreateDirectoryW

rsaenh

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

traffic

TcDeleteFlow
TcAddFlow
TcAddFilter
TcDeleteFilter

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy