f236d9a6a50cfcfe8025c285f306681912148577b9f01a94c31c41ac6949d9b1 | Triage

Submit
Reports

Overview

overview

1

Static

static

f236d9a6a5...b1.exe

windows7-x64

1

f236d9a6a5...b1.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f236d9a6a50cfcfe8025c285f306681912148577b9f01a94c31c41ac6949d9b1.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f236d9a6a50cfcfe8025c285f306681912148577b9f01a94c31c41ac6949d9b1.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

f236d9a6a50cfcfe8025c285f306681912148577b9f01a94c31c41ac6949d9b1
Size

108KB
MD5

7d29572a0885df9cbdf1714885c5c49b
SHA1

2cbf7486e35a260c25e82c8a7e116d2b9f95c9e7
SHA256

f236d9a6a50cfcfe8025c285f306681912148577b9f01a94c31c41ac6949d9b1
SHA512

25dc02ad6de713fe3459841ffa89fcb262cafaa542f313820f933a390408fe8c253540dd1aa4216fa26e3b7b8ba1ee177cf255d003d92cee314278e2ef2c0eb7
SSDEEP

1536:IYguaTZzvu+e00PQZuqW0IVBZV1fd172TOXZjLZiQlyFW4qDlT3PkMM:Ib9viQQDr7ZPFrpdyFWV38Z

Score

N/A

Malware Config

Signatures

Files

f236d9a6a50cfcfe8025c285f306681912148577b9f01a94c31c41ac6949d9b1
.exe windows x86

554521397b07e93fe39f17995e6531ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
GetExitCodeProcess
GetCurrentThread
GetStringTypeW
GetSystemTimeAsFileTime
OutputDebugStringA
ExitProcess
LoadResource
FreeEnvironmentStringsA
DeleteFileA
GetTempPathA
VirtualProtect
GetDateFormatA
SizeofResource
GetLastError
GetEnvironmentStringsW
GetThreadLocale
Sleep
SetLastError
GetOEMCP
SetStdHandle
GetFileAttributesA
GetModuleHandleA
GetShortPathNameA
GlobalReAlloc
LCMapStringW
GetCurrentProcessId
GetTimeZoneInformation
GetProcAddress
RtlMoveMemory

msvcrt

__p__commode
tan
__p___initenv
_except_handler3
__set_app_type
_initterm
_adjust_fdiv
_XcptFilter
__getmainargs
_controlfp
_exit
__p__fmode

Sections

.text
Size: 1024B - Virtual size: 578B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Qawi
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy