944ba70d2ae8097321e4141914fa976a07c13bbfcc8e8eabc06b9726d7b195b4 | Triage

Submit
Reports

Overview

overview

Static

static

944ba70d2a...b4.exe

windows7-x64

944ba70d2a...b4.exe

windows10-2004-x64

5

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

944ba70d2ae8097321e4141914fa976a07c13bbfcc8e8eabc06b9726d7b195b4.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

944ba70d2ae8097321e4141914fa976a07c13bbfcc8e8eabc06b9726d7b195b4.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

944ba70d2ae8097321e4141914fa976a07c13bbfcc8e8eabc06b9726d7b195b4
Size

69KB
MD5

934c869f31db6e26d03706f91cbef0b3
SHA1

f7221f45caebebdeb020f1814d286861b13c9a78
SHA256

944ba70d2ae8097321e4141914fa976a07c13bbfcc8e8eabc06b9726d7b195b4
SHA512

c42cd98ca5f1d91b8ecc8fb8b5ca4fa1e191edfe5738d853714148c4612cb4296542e9c733f06b86e3371c2c9829b90ba1879c98bf7d85def3d1f8498f3d90ae
SSDEEP

1536:Aca41Y7D1Ob/Evuw5odUTNoIV6BsyKXcT/pOW:ABPD1OLOLNoA6BsdMl

Score

N/A

Malware Config

Signatures

Files

944ba70d2ae8097321e4141914fa976a07c13bbfcc8e8eabc06b9726d7b195b4
.exe windows x86

c1b33de2dc890ecf957b6781e8db7922

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetModuleFileNameW
GetPrivateProfileIntA
FormatMessageA
lstrcpynA
GetModuleHandleA
TlsGetValue
SetCurrentDirectoryA
lstrlenA
lstrcpynA
TlsAlloc
GetNumberFormatA
lstrcpynA
GetStartupInfoW
GetFullPathNameA
FindNextVolumeW
TlsAlloc
lstrcpynA
VirtualAlloc
lstrcpynA
CreateEventA
DeleteFileW
GetLocaleInfoW

vssapi

IsVolumeSnapshotted
??1CVssWriter@@UAE@XZ
??0CVssWriter@@QAE@XZ
VssFreeSnapshotProperties

Sections

.text
Size: 11KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy