60b96da9f9a8d2367d00e219591bd32760bbfe2b5d38f74e5a77b7ce05dd1719 | Triage

Submit
Reports

Overview

overview

8

Static

static

60b96da9f9...19.exe

windows7-x64

8

60b96da9f9...19.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

60b96da9f9a8d2367d00e219591bd32760bbfe2b5d38f74e5a77b7ce05dd1719.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

60b96da9f9a8d2367d00e219591bd32760bbfe2b5d38f74e5a77b7ce05dd1719.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

60b96da9f9a8d2367d00e219591bd32760bbfe2b5d38f74e5a77b7ce05dd1719
Size

741KB
MD5

227d73300a6d8e6bdad4e7c6cd7c9b4d
SHA1

ba0a5c7af01ae643ba3f4a7a249eecb44c9f574f
SHA256

60b96da9f9a8d2367d00e219591bd32760bbfe2b5d38f74e5a77b7ce05dd1719
SHA512

dbecde52989ba75508b0109bd874c0327936c78a9dcc17c87b38855ae39538241267d9d7980efcb27cc234e068fa0dddd9e9b961cd1304204ea8342bf12dd0ae
SSDEEP

12288:LKGfUbcF9WqVZ1MjvjDBeaciBidNvqDQRTZ5wTVnXbCS:LKGgw4mGc8sRTnGB

Score

N/A

Malware Config

Signatures

Files

60b96da9f9a8d2367d00e219591bd32760bbfe2b5d38f74e5a77b7ce05dd1719
.exe windows x86

c4b99726c7f99000652dbe8d590c7768

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
HeapDestroy
GetFileSize
FindClose
ResetEvent
GetTickCount
WaitForSingleObject
ResumeThread
GetEnvironmentVariableA
CloseHandle
DeleteFileA
CreateFileA
FindClose
InitializeCriticalSection
GetModuleHandleA
SetEndOfFile
GetCurrentDirectoryA
ExitProcess
ReleaseMutex
SetFileAttributesA
HeapCreate
IsBadCodePtr
GetTickCount
GetStartupInfoW
FindAtomA

wininet

FtpOpenFileA
FtpDeleteFileA
HttpEndRequestA
DeleteUrlCacheEntryA
FtpCreateDirectoryA
DeleteUrlCacheEntryA
HttpQueryInfoA
FindCloseUrlCache
DeleteUrlCacheEntryA
FtpFindFirstFileA
FtpGetFileA
FtpGetCurrentDirectoryA
FtpPutFileA

rasser

PortClose
PortClose
PortClose
PortClose

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 736KB - Virtual size: 735KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy