9556b9c689ab8708acdae6e7f38b77de71a65900f286dca7204e453bdc5595b4 | Triage

Submit
Reports

Overview

overview

Static

static

9556b9c689...b4.exe

windows7-x64

9556b9c689...b4.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9556b9c689ab8708acdae6e7f38b77de71a65900f286dca7204e453bdc5595b4.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

9556b9c689ab8708acdae6e7f38b77de71a65900f286dca7204e453bdc5595b4.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

10 signatures

150 seconds

General

Target

9556b9c689ab8708acdae6e7f38b77de71a65900f286dca7204e453bdc5595b4
Size

196KB
MD5

bbf4fbf1793161c2c15d6174be5f7170
SHA1

e5e42723aa2092f84f95131c755bef9558c5371a
SHA256

9556b9c689ab8708acdae6e7f38b77de71a65900f286dca7204e453bdc5595b4
SHA512

38e1a2763479d06880aa5935f820b4ce2ea2c54c8a8dbde859b1b7f24ea61c028d126bc312247e79bed7e3c4694a0d5ddd5cc9313b0a810fc3e176ea3a1f8b1e
SSDEEP

6144:5TV4j6RwUMmFz/+/K2NjH8PtFexpWMd3D:5x4Od+jNjH8mHWMdz

Score

N/A

Malware Config

Signatures

Files

9556b9c689ab8708acdae6e7f38b77de71a65900f286dca7204e453bdc5595b4
.exe windows x86

ae87acbcc01cee90a65c854e510a597e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharLowerBuffW
SetMenuItemBitmaps
MapDialogRect
RegisterWindowMessageW
MessageBoxExA
RegisterClassExA
CopyAcceleratorTableW
GetKeyNameTextW
CharNextA
RegisterClassExW
GetMenuItemID
GetClassInfoW
IsDlgButtonChecked
InvalidateRect
GetMessageExtraInfo
SendMessageTimeoutA
InflateRect

gdi32

SetPaletteEntries
CreateBitmap
CreateBrushIndirect
CreateDiscardableBitmap
GetMapMode
CreateSolidBrush
PatBlt
SetWindowOrgEx

shlwapi

PathIsFileSpecA

kernel32

CreateSemaphoreW
GetHandleInformation
WaitForMultipleObjectsEx
IsBadStringPtrW
QueryPerformanceCounter
GetLocaleInfoA
LoadLibraryExA
SetCurrentDirectoryW

Exports

Exports

ModifyTaskA@4
IsStringExW@8
CallKeyNameOriginal@12
CancelThreadW@12
GetSectionOld@8

Sections

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy