3612ca9826832548a4c1c1754bcfe40e0b778996416fec80be21391b65cd14f7 | Triage

Submit
Reports

Overview

overview

8

Static

static

3612ca9826...f7.exe

windows7-x64

8

3612ca9826...f7.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3612ca9826832548a4c1c1754bcfe40e0b778996416fec80be21391b65cd14f7.exe

Resource

win7-20221111-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

3612ca9826832548a4c1c1754bcfe40e0b778996416fec80be21391b65cd14f7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3612ca9826832548a4c1c1754bcfe40e0b778996416fec80be21391b65cd14f7
Size

299KB
MD5

21dc260c974f065d414cfb38bb3f9500
SHA1

c90c4695340d818fad6e6e2a1b71c9392f6d9004
SHA256

3612ca9826832548a4c1c1754bcfe40e0b778996416fec80be21391b65cd14f7
SHA512

8edd48474b8c79981b2882a9475e11b518ffed252b6934fbdd1d39d875878486e9f95c535ad3e27839e8c60d72cb26733d7be2d3929815fdabb17c3355f73ea6
SSDEEP

6144:MSEUU3OtsgHO8Xv8IZzxOgFKKzwFpsj+lJwAEsuFeGaEuMM64uyI+qHP:wUU3sHOIEITOgFjL6lJwHsuFWEs6N/P

Score

N/A

Malware Config

Signatures

Files

3612ca9826832548a4c1c1754bcfe40e0b778996416fec80be21391b65cd14f7
.exe windows x86

9f9360824dd62309ee8913564c2c8d3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
ReleaseMutex
GetPrivateProfileIntA
GetCommandLineW
GetSystemInfo
lstrlenA
FreeConsole
CloseHandle
GetEnvironmentVariableA
LoadLibraryW
SuspendThread
GlobalFree
ResetEvent
GetStdHandle
CreateMutexW
InterlockedExchange
LocalSize
WriteFile
CreateEventW
VirtualAllocEx

advapi32

CloseEventLog
InitializeSid
IsValidSecurityDescriptor
RegCreateKeyExW
IsTextUnicode
IsValidSid
ControlService
RegQueryValueW
CreateServiceW
RegCloseKey
RegDeleteValueA
RegEnumKeyA
ClearEventLogW
InitializeSid

fwcfg

InitHelperDll
InitHelperDll
InitHelperDll
InitHelperDll
InitHelperDll

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy