3645761824ab333a0d6d2802a1cb912586e72de8709b7516b0fc7d1e6f0629a6 | Triage

Submit
Reports

Overview

overview

Static

static

3645761824...a6.exe

windows7-x64

3645761824...a6.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3645761824ab333a0d6d2802a1cb912586e72de8709b7516b0fc7d1e6f0629a6.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

3645761824ab333a0d6d2802a1cb912586e72de8709b7516b0fc7d1e6f0629a6.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

3645761824ab333a0d6d2802a1cb912586e72de8709b7516b0fc7d1e6f0629a6
Size

84KB
MD5

58dffc1f6476c9ed5828ca7734359ff0
SHA1

3ed0ddbc7b2104403673cf1c02e2fa8616318220
SHA256

3645761824ab333a0d6d2802a1cb912586e72de8709b7516b0fc7d1e6f0629a6
SHA512

057e5b6ae2480c142e63e09822cb4ed9a333a1d837da32fc985c201f1b28c84f9d142a62bf9b6db74cb322e0b54b721e1b077aadf166325eb5fbf377b2b15be8
SSDEEP

1536:WZNLUpW61yxhjnqAmArlhuVQdR85K6Jy9W8VKOl7:WZNLUw61Q5mmftRKa

Score

N/A

Malware Config

Signatures

Files

3645761824ab333a0d6d2802a1cb912586e72de8709b7516b0fc7d1e6f0629a6
.exe windows x86

faca23f88e3d0a53af13b6bf9deb9ee7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetProcessHeap
CreateDirectoryA
GetFileAttributesA
HeapDestroy
DeleteFileW
LocalFree
GetConsoleMode
VirtualProtect
LocalLock
GetFileTime
GetCurrentThreadId
SetLocalTime
InterlockedExchange
CreateFileW
DeleteFileW
CreateFileW
GetModuleFileNameA
LeaveCriticalSection
CancelIo
GetDriveTypeA
GetModuleHandleA
FindAtomA
ReadConsoleW
GetConsoleAliasW

user32

GetWindowLongA
GetSysColor
MessageBoxA
IsWindowEnabled
GetWindowLongA
DispatchMessageA
GetWindowDC
GetKeyState
LoadCursorA
GetWindowTextA
PeekMessageA
IsZoomed
wsprintfA

davclnt

DllGetClassObject
NPCloseEnum
NPGetCaps
DllCanUnloadNow

advapi32

IsValidSid

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy