f17b5dd79630c5889ee5fe386df2ed7ff102a9198d33b8c2dcad3e7fdf72669b | Triage

Submit
Reports

Overview

overview

8

Static

static

f17b5dd796...9b.exe

windows7-x64

8

f17b5dd796...9b.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f17b5dd79630c5889ee5fe386df2ed7ff102a9198d33b8c2dcad3e7fdf72669b.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

f17b5dd79630c5889ee5fe386df2ed7ff102a9198d33b8c2dcad3e7fdf72669b.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

f17b5dd79630c5889ee5fe386df2ed7ff102a9198d33b8c2dcad3e7fdf72669b
Size

306KB
MD5

267bc7865771a9678e10abb9c7ad2926
SHA1

41650f4efa7c93f65ddaf3fa4fde7546ae76fd1c
SHA256

f17b5dd79630c5889ee5fe386df2ed7ff102a9198d33b8c2dcad3e7fdf72669b
SHA512

281af5522c4a0a8b8986ac2557febfc5999b3ba28fd468e706ae28a08b344e4a490c76e4b14086522b6a86ea5cb90787b289f2239dca510b4e214cb8de7cc67c
SSDEEP

6144:Kd5Q1nc4Cj9pVL87uZgGBcTUMrDhk1MU0LG6XhQFg9LXl4hLZUG6H9lhy:Kd5Q1sj9pVL87EgDTUMrDoMU05X+i9LK

Score

N/A

Malware Config

Signatures

Files

f17b5dd79630c5889ee5fe386df2ed7ff102a9198d33b8c2dcad3e7fdf72669b
.exe windows x86

b5469ffac5740c264459e33aa165ab3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
InitializeCriticalSection
CreateFileA
EnterCriticalSection
GetConsoleMode
CreateDirectoryW
GetLocalTime
GetModuleFileNameA
GetTickCount
lstrlenW
GetDriveTypeA
GetCalendarInfoW
RemoveDirectoryA
GetModuleHandleA
LeaveCriticalSection
GetCommandLineW
DeleteFileA
FindClose
WriteConsoleW
GlobalFree
CloseHandle
TlsGetValue
Sleep
VirtualProtectEx
GetStartupInfoA

user32

GetWindowDC
GetWindowLongA
wsprintfA
DispatchMessageA
GetSysColor
IsWindowVisible
MessageBoxA
PeekMessageA
GetWindowLongA
IsWindow
IsWindowEnabled
EqualRect
FillRect

cryptdlg

CertTrustCertPolicy
CertConfigureTrustA
CertConfigureTrustW
CertTrustCleanup

advapi32

IsValidSid

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy