297f087e9403dedadaac10ada48adf7f8bc2860848ceb5cc6cab0f9c631c9174 | Triage

Submit
Reports

Overview

overview

8

Static

static

297f087e94...74.exe

windows7-x64

8

297f087e94...74.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

297f087e9403dedadaac10ada48adf7f8bc2860848ceb5cc6cab0f9c631c9174.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

297f087e9403dedadaac10ada48adf7f8bc2860848ceb5cc6cab0f9c631c9174.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

297f087e9403dedadaac10ada48adf7f8bc2860848ceb5cc6cab0f9c631c9174
Size

21KB
MD5

5b4da4f1f6f52b312abc2dc67eb47e78
SHA1

9ac190a952773d40361e0de7a2d93e0fa59ffab4
SHA256

297f087e9403dedadaac10ada48adf7f8bc2860848ceb5cc6cab0f9c631c9174
SHA512

82e56b0edac8680ba65f70ef9790dbd9d5d5199f928b53a0e5f2cee544c7879a20f0db8da9bd31e48180a8448a496ba97918fb4d94e0b800f7dc4c7c0842079c
SSDEEP

192:UsRY7UbgyIGm7T950nP5uSpKal+NHNNEDO6PKOAkJOVn8LkTOdKGvOGGWXskNa1K:JjI7T9yP5uSpV+mC6VNwUK/NW8fWco

Score

N/A

Malware Config

Signatures

Files

297f087e9403dedadaac10ada48adf7f8bc2860848ceb5cc6cab0f9c631c9174
.exe windows x86

77c75dee9f26a7be3561e51dc490a501

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
VirtualAlloc
ResumeThread
FindVolumeClose
FindVolumeClose
GetEnvironmentVariableA
DeleteAtom
GetStdHandle
ExitProcess
GetCommandLineA
SetFileAttributesA
ReleaseMutex
EnterCriticalSection
CreateFileA
GetVersion
GetModuleHandleA
CloseHandle
HeapSize
GetExitCodeThread
WaitForSingleObject
FindAtomW
SetEndOfFile
GetFileSize
GetCurrentDirectoryA
IsBadReadPtr

wininet

FtpCreateDirectoryW
FtpFindFirstFileA
FtpPutFileA
HttpEndRequestA
DeleteUrlCacheEntryA
FtpDeleteFileA
FtpOpenFileA
FtpGetFileW
DeleteUrlCacheEntryA
FindCloseUrlCache
FtpGetCurrentDirectoryW
HttpQueryInfoA
DeleteUrlCacheEntryA

snmpapi

SnmpTfxClose
SnmpTfxClose
SnmpTfxClose
SnmpTfxClose

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy