c3a64ca3b553aa26934ef6e24d6eb6cfd576efbe558d8236ce7edaebc4614405 | Triage

Submit
Reports

Overview

overview

8

Static

static

c3a64ca3b5...05.exe

windows7-x64

8

c3a64ca3b5...05.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c3a64ca3b553aa26934ef6e24d6eb6cfd576efbe558d8236ce7edaebc4614405.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

c3a64ca3b553aa26934ef6e24d6eb6cfd576efbe558d8236ce7edaebc4614405.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

c3a64ca3b553aa26934ef6e24d6eb6cfd576efbe558d8236ce7edaebc4614405
Size

746KB
MD5

e71a90a64729046d372178e91abd63f6
SHA1

aa17d13ba7fac30c5db1b0ce3027f1944bddf99d
SHA256

c3a64ca3b553aa26934ef6e24d6eb6cfd576efbe558d8236ce7edaebc4614405
SHA512

1c86a0f1d71cdf5b70cb38e60e9a258aeed2a56e558630e8a684b9a719dde8ac0a846c38e414aba66db3bdee211748528e0dbd97e9d4c5d8616dc94205f364de
SSDEEP

12288:MmvGkiphVm6qiFSqIsobJzkQuTCLgsFz9QtcTuwUOd73zIuN9ug:MGpipP8skxHLgyzSJOB3zIuN9ug

Score

N/A

Malware Config

Signatures

Files

c3a64ca3b553aa26934ef6e24d6eb6cfd576efbe558d8236ce7edaebc4614405
.exe windows x86

6f207cecaa817b43d8a49924f6f44d0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindVolumeClose
GetCommandLineW
FindClose
lstrlenA
GetDriveTypeA
WaitForMultipleObjects
MapViewOfFile
EnterCriticalSection
LocalSize
GetModuleHandleA
GetEnvironmentVariableW
GetFileAttributesA
HeapCreate
GetCommandLineA
ExitThread
GlobalLock
HeapFree
ReadFile
GetCurrentDirectoryW
GetFileTime
IsBadReadPtr
CloseHandle
GetFileType
FindVolumeClose
SetFileAttributesW

uxtheme

GetThemeColor
GetThemeTextExtent
CloseThemeData
OpenThemeData
GetThemeTextMetrics
IsThemeActive
CloseThemeData
GetWindowTheme
GetThemeBool
DrawThemeEdge
GetThemeEnumValue
SetWindowTheme
DrawThemeBackground

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy