560feed5ffa404ea8738a711d4f8baddb860dd2d654ced10ac100b0f69c37992 | Triage

Submit
Reports

Overview

overview

1

Static

static

560feed5ff...92.exe

windows7-x64

1

560feed5ff...92.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

560feed5ffa404ea8738a711d4f8baddb860dd2d654ced10ac100b0f69c37992.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

560feed5ffa404ea8738a711d4f8baddb860dd2d654ced10ac100b0f69c37992.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

560feed5ffa404ea8738a711d4f8baddb860dd2d654ced10ac100b0f69c37992
Size

303KB
MD5

6dd45f49b50178483018270f7a521860
SHA1

16beb4d6d66baa5f3191721482417b63cfb0d44d
SHA256

560feed5ffa404ea8738a711d4f8baddb860dd2d654ced10ac100b0f69c37992
SHA512

4ae160a677241aec4f371b1d8fd4dbf2e556b1478e351eb1e73f6f97f55e1d3a9369942eeac367bc5aea6e3ca74571be11b94a09d45284512d4b3266c44ea047
SSDEEP

6144:aXr9BRXdcbBWPQanG2RfVW2ogOar/jl+L4xicDtIGXWwozdEX:afRXdcbB7anGSF7l+L0ic5Dozq

Score

N/A

Malware Config

Signatures

Files

560feed5ffa404ea8738a711d4f8baddb860dd2d654ced10ac100b0f69c37992
.exe windows x86

b829b29411da04bb208e55dc7c53a394

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetVolumePathNameW
FileTimeToLocalFileTime
lstrcpyA
HeapCreate
GetProcessHeap
lstrcpyA
IsValidLocale
lstrcpyA
GetModuleFileNameA
GetModuleHandleA
Sleep
CreateNamedPipeW
SetLastError
lstrcpyA
CreateEventA
GetStartupInfoA
GetLogicalDriveStringsW
GetConsoleAliasW
lstrlenW
DeleteFileA
GetStdHandle
GetCommState

sqlunirl

wsprintf_
_AddAtom_@4
_AppendMenu_@16
AbortSystemShutdown_

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RDATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ORPC
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy