921ba0fb8cf7d6c13014ec226c923f0f0c2655160bc01f129eec6d2a655473b6 | Triage

Submit
Reports

Overview

overview

5

Static

static

921ba0fb8c...b6.exe

windows7-x64

5

921ba0fb8c...b6.exe

windows10-2004-x64

5

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

921ba0fb8cf7d6c13014ec226c923f0f0c2655160bc01f129eec6d2a655473b6.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

921ba0fb8cf7d6c13014ec226c923f0f0c2655160bc01f129eec6d2a655473b6.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

921ba0fb8cf7d6c13014ec226c923f0f0c2655160bc01f129eec6d2a655473b6
Size

64KB
MD5

12ebf737cf62455534ac274d92e9aa30
SHA1

fcca5e5d7ef38f931f48c8c3a9bd21a986c48557
SHA256

921ba0fb8cf7d6c13014ec226c923f0f0c2655160bc01f129eec6d2a655473b6
SHA512

57e1f4d3670921e06f4fd15cb416c55ff72fd675e4f86cf449efbbf727cc0e1c7fa8310228bb09e2c28feb8a24a5d3cec31d5cd5cf022886ac726ee8a94100e3
SSDEEP

768:bPOzcpdmCqXQ2/e1I/zmmQKXi3pj0SmZNZ9Jw/bSHHggqU3Ep2XiepTmp:bPOwfmCzZIrjXi3tmZf9hgHAEEie

Score

N/A

Malware Config

Signatures

Files

921ba0fb8cf7d6c13014ec226c923f0f0c2655160bc01f129eec6d2a655473b6
.exe windows x86

cdc0a77ba82f8f685def638b58c7a7c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
GetLongPathNameA
GetDiskFreeSpaceW
HeapCreate
ReadFileEx
lstrcpyW
WaitForSingleObject
GetDiskFreeSpaceW
SetEnvironmentVariableA
GetPrivateProfileIntA
lstrcmpA
Heap32First
GetModuleHandleW
GetStringTypeW
FindResourceW
GetPrivateProfileSectionA
GetCurrentDirectoryA
GetPrivateProfileIntA
Sleep
GetExitCodeProcess
LoadLibraryA
GetLogicalDrives
InterlockedDecrement

apphelp

AllowPermLayer
SdbCreateMsiTransformFile
ApphelpCheckExe
ApphelpCheckIME

clbcatq

ComPlusMigrate
ComPlusMigrate
CheckMemoryGates
DllGetClassObject
ComPlusMigrate
SetupOpen
CheckMemoryGates
SetupOpen
SetSetupSave
SetSetupSave
CheckMemoryGates
SetupOpen
DllGetClassObject

version

VerFindFileA

Sections

.text
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy