ad2fc293426b0d50184a82b2fc41d4e34b964b4dc642fe06558803678c0e3161 | Triage

Submit
Reports

Overview

overview

8

Static

static

ad2fc29342...61.exe

windows7-x64

8

ad2fc29342...61.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ad2fc293426b0d50184a82b2fc41d4e34b964b4dc642fe06558803678c0e3161.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ad2fc293426b0d50184a82b2fc41d4e34b964b4dc642fe06558803678c0e3161.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ad2fc293426b0d50184a82b2fc41d4e34b964b4dc642fe06558803678c0e3161
Size

742KB
MD5

ee47707ada7aadc8a95ae27371cafb85
SHA1

a22a73ef62289b782c1fe7e90736c32b3ecbc91b
SHA256

ad2fc293426b0d50184a82b2fc41d4e34b964b4dc642fe06558803678c0e3161
SHA512

0efcee6d4b89611cc6d1157efa3150eee3ebed5da74c590bd10dc77728d7ccb5b3040619390dfb24b33921fbb3f0ae61590a9cbce8b51f893233dc583d0e590a
SSDEEP

12288:8cRDuGjPidm77iyl/ky7jVFx/H6nnRZceUB+cCiKxMwy2G3xZe+Ilbs:ZLqdg7v7jVFBWnLcf2iKxMwy33fe+Ilo

Score

N/A

Malware Config

Signatures

Files

ad2fc293426b0d50184a82b2fc41d4e34b964b4dc642fe06558803678c0e3161
.exe windows x86

c71ca2e7b5774334f9f809223e083ae6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomW
ExitProcess
IsBadReadPtr
GetEnvironmentVariableA
GetCurrentDirectoryA
ResumeThread
WaitForSingleObject
CloseHandle
GetVersion
GetStdHandle
SetEndOfFile
DeleteAtom
FindVolumeClose
GetFileSize
CreateFileA
GetModuleHandleA
DeleteFileA
SetFileAttributesA
VirtualAlloc
GetCommandLineA
GetExitCodeThread
HeapSize
ReleaseMutex
EnterCriticalSection
FindVolumeClose

wininet

FtpOpenFileA
HttpEndRequestA
FtpCreateDirectoryW
FtpGetFileW
HttpQueryInfoA
DeleteUrlCacheEntryA
FindCloseUrlCache
DeleteUrlCacheEntryA
FtpGetCurrentDirectoryW
FtpFindFirstFileA
FtpDeleteFileA
DeleteUrlCacheEntryA
FtpPutFileA

snmpapi

SnmpTfxClose
SnmpTfxClose
SnmpTfxClose
SnmpTfxClose

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 736KB - Virtual size: 735KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy