fdc1b4889aa459a92be8ca5f6c94b0139deec09d29284405d3043481e247ce54 | Triage

Submit
Reports

Overview

overview

Static

static

fdc1b4889a...54.exe

windows7-x64

fdc1b4889a...54.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fdc1b4889aa459a92be8ca5f6c94b0139deec09d29284405d3043481e247ce54.exe

Resource

win7-20221111-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

fdc1b4889aa459a92be8ca5f6c94b0139deec09d29284405d3043481e247ce54.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

12 signatures

150 seconds

General

Target

fdc1b4889aa459a92be8ca5f6c94b0139deec09d29284405d3043481e247ce54
Size

39KB
MD5

7be5cd191ee10f1c924a001c666673bf
SHA1

5b9ebbe20e478c615efcff601cc376d7b1d766c4
SHA256

fdc1b4889aa459a92be8ca5f6c94b0139deec09d29284405d3043481e247ce54
SHA512

ac80b7208d90ba10c1204578288d6f2e3e0e368aed59badb3dd475b729dc0524abb1aba9017aa15b775c346a5e9ef45c388cef7828ae5bce7ffd1da1c537fcc5
SSDEEP

768:eUhOYreQYs8a06CeYqM4NnRBvDM0a0wJBlL5BRIgzyK5aJWW12eEU:eiOYreQAvH4NRBbq0AlL5k6B5aJWAzEU

Score

N/A

Malware Config

Signatures

Files

fdc1b4889aa459a92be8ca5f6c94b0139deec09d29284405d3043481e247ce54
.exe windows x86

0308f778791c5c98edf6595072b4ea72

Code Sign

f8:36:10:f9:54:bd:f3:93:79:5d:63:5b:5e:16:9e:cb:35:8d:34:49
Signer

Actual PE Digest

f8:36:10:f9:54:bd:f3:93:79:5d:63:5b:5e:16:9e:cb:35:8d:34:49

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

NO CERTIFICATE

01/01/0001, 00:00
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
VirtualFreeEx
VirtualProtectEx
ReadProcessMemory
WriteProcessMemory
CreateProcessA
GetModuleFileNameA
GetCurrentProcess
SetThreadContext
ResumeThread
GetThreadContext

advapi32

AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueA

msvcrt

malloc
fclose
??3@YAXPAX@Z
fread
fseek
fopen
free

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Wpack
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.12
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy