a8fbf4d4411368d6891060e1a37a9eb8968418572c4ee6b683895a79e917b548 | Triage

Submit
Reports

Overview

overview

8

Static

static

a8fbf4d441...48.exe

windows7-x64

8

a8fbf4d441...48.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a8fbf4d4411368d6891060e1a37a9eb8968418572c4ee6b683895a79e917b548.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a8fbf4d4411368d6891060e1a37a9eb8968418572c4ee6b683895a79e917b548.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

a8fbf4d4411368d6891060e1a37a9eb8968418572c4ee6b683895a79e917b548
Size

304KB
MD5

130dbcd0d92dde18b8927fe3eae0b117
SHA1

57af5c00c4b4ff164f391a34251917b38a2f67ab
SHA256

a8fbf4d4411368d6891060e1a37a9eb8968418572c4ee6b683895a79e917b548
SHA512

55b35b917e6c58a1e055228e58b1e7a06b991daefecec04e7e61d21648aacff0d3379ebfdb3461baf25a550326ab7e47c53d05036efc4de8ae9acf338273c648
SSDEEP

6144:s5a8OIGBWx8IZEmFfq5GGsti1RaSlwbypKTkVLS4G6jjLjnT0:s5L8Wx8ZGfGR1oSVKTwJG6/

Score

N/A

Malware Config

Signatures

Files

a8fbf4d4411368d6891060e1a37a9eb8968418572c4ee6b683895a79e917b548
.exe windows x86

20655b11a3933ae81110dbf10a3e329e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
WaitForSingleObject
FindAtomW
ExitProcess
GetStdHandle
GetEnvironmentVariableA
IsBadReadPtr
GetExitCodeThread
GetModuleHandleA
HeapSize
SetEndOfFile
CreateFileA
ReleaseMutex
DeleteAtom
FindVolumeClose
CloseHandle
EnterCriticalSection
ResumeThread
DeleteFileA
VirtualAlloc
FindVolumeClose
SetFileAttributesA
GetCommandLineA
GetFileSize
GetCurrentDirectoryA

wininet

DeleteUrlCacheEntryA
FtpPutFileA
HttpEndRequestA
FtpFindFirstFileA
DeleteUrlCacheEntryA
FtpGetCurrentDirectoryW
FtpDeleteFileA
FtpOpenFileA
FindCloseUrlCache
HttpQueryInfoA
DeleteUrlCacheEntryA
FtpCreateDirectoryW
FtpGetFileW

snmpapi

SnmpTfxClose
SnmpTfxClose
SnmpTfxClose
SnmpTfxClose

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 297KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy