145326ed73b28a283e3003f0e02195d64d43fddbdf3621819d44106011844ab3 | Triage

Submit
Reports

Overview

overview

8

Static

static

145326ed73...b3.exe

windows7-x64

8

145326ed73...b3.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

145326ed73b28a283e3003f0e02195d64d43fddbdf3621819d44106011844ab3.exe

Resource

win7-20221111-en

evasion persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

145326ed73b28a283e3003f0e02195d64d43fddbdf3621819d44106011844ab3.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

145326ed73b28a283e3003f0e02195d64d43fddbdf3621819d44106011844ab3
Size

233KB
MD5

09f24bda24035704b561819688ac6557
SHA1

dced77385f6fc1f755a88c822dd087fbbe137365
SHA256

145326ed73b28a283e3003f0e02195d64d43fddbdf3621819d44106011844ab3
SHA512

94118fab87e116294487a2d2058eeb52fdd9dea73529a6f1783d64bf8ed4bdf26f3192ee55e01e16c9dd14521295287058728417c40e0f837124c917af6a284f
SSDEEP

6144:LhczSK0xst01yWrWfZFykIn/dTTl+nqQp6SCDNYnrHL:Wzpm1ZSfZFWVQcSfnDL

Score

N/A

Malware Config

Signatures

Files

145326ed73b28a283e3003f0e02195d64d43fddbdf3621819d44106011844ab3
.exe windows x86

9d2f4313cfa96ea7aebfb2200146e1b6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
CloseHandle
SetEndOfFile
HeapCreate
AddAtomA
FindClose
GetEnvironmentVariableA
GetStartupInfoW
SuspendThread
GetFileSize
GetTickCount
InitializeCriticalSection
GetCurrentDirectoryA
ResetEvent
GetModuleHandleA
ExitProcess
SetLastError
WaitForSingleObject
CreateFileA
HeapDestroy
ReleaseMutex
DeleteFileA
GetProfileIntW
GetTickCount
HeapSize

shell32

ShellAboutA
SHGetMalloc
DragAcceptFiles
DllUnregisterServer
StrChrA
DragQueryFileA
DuplicateIcon
ShellMessageBoxA
DragFinish
ExtractIconA
SHGetSettings
SHGetDiskFreeSpaceA
SHFree

dpmodemx

SPInit
SPInit
SPInit
SPInit

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy