dc00e348dedd995046c0bd43cec5e607dffe3ebd697ac632b0513fc91c0ddc10 | Triage

Submit
Reports

Overview

overview

8

Static

static

dc00e348de...10.exe

windows7-x64

8

dc00e348de...10.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

dc00e348dedd995046c0bd43cec5e607dffe3ebd697ac632b0513fc91c0ddc10.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

dc00e348dedd995046c0bd43cec5e607dffe3ebd697ac632b0513fc91c0ddc10.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

dc00e348dedd995046c0bd43cec5e607dffe3ebd697ac632b0513fc91c0ddc10
Size

354KB
MD5

80fa81cc8a1417b39b170c18085e7e0e
SHA1

323f4e9429d9465ae0973a0e6543f0e28a64238a
SHA256

dc00e348dedd995046c0bd43cec5e607dffe3ebd697ac632b0513fc91c0ddc10
SHA512

1a0c7094ad21c5ceda2e6cdaefb343a7a55fbc86cae04489a184630d23f266fbee4a03c73f4e184ca82423e886db15bb4a6b6873024077d524c669b49a447c16
SSDEEP

6144:8EPP1mQs2bTth/XIk1jE9qHBE2o0xS/dUYqLP8yCrpRSbZQrbMizFHzqOH:8kPQQ5f4k1okKB06eZY7+yMizpqOH

Score

N/A

Malware Config

Signatures

Files

dc00e348dedd995046c0bd43cec5e607dffe3ebd697ac632b0513fc91c0ddc10
.exe windows x86

dd9090724281fb88412e3b557dbcecb8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
ResetEvent
GetDriveTypeW
VirtualAlloc
GlobalFree
GetModuleHandleW
InterlockedExchange
CloseHandle
lstrlenA
GetCommandLineA
GlobalSize
ResumeThread
FindVolumeClose
GetACP
GetMailslotInfo
WriteFile
GetExitCodeProcess
GetPrivateProfileIntW
CreateThread
GetEnvironmentVariableA

user32

SetFocus
GetSysColor
DispatchMessageA
CallWindowProcW
IsWindow
GetCursorInfo
GetClientRect
GetSysColor
EndDialog
GetKeyboardType
DrawStateW
GetClassInfoA
CreateWindowExA

qedit

DllUnregisterServer
DllUnregisterServer
DllGetClassObject
DllUnregisterServer
DllUnregisterServer

sysdm.cpl

NoExecuteAddFileOptOutList

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy