a7993f5f86d79e2ceb96455c50830c95654eda6374ffdda969facd5644223c87 | Triage

Submit
Reports

Overview

overview

Static

static

a7993f5f86...87.exe

windows7-x64

a7993f5f86...87.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a7993f5f86d79e2ceb96455c50830c95654eda6374ffdda969facd5644223c87.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

a7993f5f86d79e2ceb96455c50830c95654eda6374ffdda969facd5644223c87.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a7993f5f86d79e2ceb96455c50830c95654eda6374ffdda969facd5644223c87
Size

207KB
MD5

673e1a3f1d0d1f96b6f1785c77c8616e
SHA1

baf3b73db788eebe9bd3815d45aca38eee84148f
SHA256

a7993f5f86d79e2ceb96455c50830c95654eda6374ffdda969facd5644223c87
SHA512

a8a8dbc8f16735a301cfa1371186b6237e9a851849c36bbf6a746e51777dcdeb8c6e6fb10141556fbea88d605394dfb9ee77eebd85ada0895a9d905f90d7aa3a
SSDEEP

6144:cyQohODiJ4hfV4uRxnwei8ej0EJfhs+5kKFVBfKKnsk:cyQNx4uR9JejNt+4VB1r

Score

N/A

Malware Config

Signatures

Files

a7993f5f86d79e2ceb96455c50830c95654eda6374ffdda969facd5644223c87
.exe windows x86

4255b54491addc95f902e63713592bf0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetCurrentDirectoryA
ReleaseMutex
ResumeThread
ResetEvent
GetTickCount
SetFileAttributesA
GetModuleHandleA
WaitForSingleObject
GetStartupInfoW
GetFileSize
CreateFileA
CloseHandle
FindVolumeClose
HeapSize
DeleteFileA
GetCommandLineA
FindVolumeClose
FindAtomA
GetEnvironmentVariableA
EnterCriticalSection
ExitProcess
SetEndOfFile
IsBadCodePtr
HeapDestroy

wininet

HttpEndRequestA
FtpGetCurrentDirectoryW
FtpCreateDirectoryW
FtpGetFileW
FtpPutFileA
DeleteUrlCacheEntryA
FtpFindFirstFileA
DeleteUrlCacheEntryA
DeleteUrlCacheEntryA
FtpDeleteFileA
FtpOpenFileA
HttpQueryInfoA
FindCloseUrlCache

sisbkup

SisRestoredLink
SisRestoredLink
SisRestoredLink
SisRestoredLink

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy