86e4a065882ab2ad53d3ac779c7316e8f877d716d0106bb39c524a91d9e2da84 | Triage

Submit
Reports

Overview

overview

8

Static

static

86e4a06588...84.exe

windows7-x64

8

86e4a06588...84.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

86e4a065882ab2ad53d3ac779c7316e8f877d716d0106bb39c524a91d9e2da84.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

86e4a065882ab2ad53d3ac779c7316e8f877d716d0106bb39c524a91d9e2da84.exe

Resource

win10v2004-20221111-en

persistence upx

windows10-2004-x64

9 signatures

150 seconds

General

Target

86e4a065882ab2ad53d3ac779c7316e8f877d716d0106bb39c524a91d9e2da84
Size

364KB
MD5

3133f8708f1c0ac83f1232a6d69c3f4d
SHA1

9edd40e963ee46cd3cc3e4bfbadedca419f2e4bd
SHA256

86e4a065882ab2ad53d3ac779c7316e8f877d716d0106bb39c524a91d9e2da84
SHA512

385e4f080f99398d54acdefd4cc0c1e57ba021e452a3be0ca1f6bebf7f795bcc2dac146aa8cab5d7341ba5a170ece566161a43efa5adbdcec676c56323ee5475
SSDEEP

6144:wBMTvQEYBpy8wLY/5fxpKfS7YURZlO52/DxSVeHSl8dXnll1:grpSOzOEBE2/DIohpll

Score

N/A

Malware Config

Signatures

Files

86e4a065882ab2ad53d3ac779c7316e8f877d716d0106bb39c524a91d9e2da84
.exe windows x86

15fd6393ae18bb4202d05bf9e91f5225

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
WaitForMultipleObjects
GetAtomNameA
ResumeThread
WaitForSingleObject
HeapCreate
LoadLibraryExA
lstrlenA
SetLastError
GetConsoleCP
HeapReAlloc
GlobalSize
GlobalUnlock
VirtualProtect
GetTickCount
GetModuleHandleA
GetConsoleDisplayMode
GetUserDefaultLangID
InterlockedExchange
GetCommandLineA
GetVersion

user32

GetDC
FrameRect
AnyPopup
wsprintfA
ReleaseDC
GetFocus
GetCursorPos
GetTitleBarInfo
DragDetect
GetParent
GetClassNameA
EndPaint
GetWindow
BeginPaint
ShowWindow
DrawTextA
CreateIcon
FillRect
SetForegroundWindow

rastapi

DeviceListen
DeviceConnect
PortClose
AddPorts
DeviceDone

quartz

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 572KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy