da2079474c7e8400ac9e99b6d0dd1d1f879dec84e8a70d8e3c878454eaa9fa8f | Triage

Submit
Reports

Overview

overview

8

Static

static

da2079474c...8f.exe

windows7-x64

8

da2079474c...8f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

da2079474c7e8400ac9e99b6d0dd1d1f879dec84e8a70d8e3c878454eaa9fa8f.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

da2079474c7e8400ac9e99b6d0dd1d1f879dec84e8a70d8e3c878454eaa9fa8f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

da2079474c7e8400ac9e99b6d0dd1d1f879dec84e8a70d8e3c878454eaa9fa8f
Size

768KB
MD5

5736e99dade324b33af4985e1f93eef3
SHA1

477fcf937637c75e5b5cdc51f3669267a6740c90
SHA256

da2079474c7e8400ac9e99b6d0dd1d1f879dec84e8a70d8e3c878454eaa9fa8f
SHA512

dba1bfaf37dfb3c135792b679968ad31ef9943f49131c06c660bd01315384741e41c14a518d851d5233cb3cbfee5ef276e9495445302929f29cf1fef3556e060
SSDEEP

12288:hQyV1MvZgH/fAtidgZLeW4zirAfOUV+Xx0XbZchDJHHx:W7ZqADb4zDm90Xbqj

Score

N/A

Malware Config

Signatures

Files

da2079474c7e8400ac9e99b6d0dd1d1f879dec84e8a70d8e3c878454eaa9fa8f
.exe windows x86

6ff7b179d8f34c2d9a9de321eaaacf6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
CreateDirectoryW
LoadLibraryA
CreateHardLinkW
SetLastError
GetProcessHeap
VirtualProtect
CreateSemaphoreA
CreateMutexW
ReadConsoleW
SetLastError
GetLocalTime
SetEvent
GetTickCount
GetPriorityClass
GetStartupInfoA
HeapSize
GetFileAttributesA
DeleteFileW
Sleep
GlobalFree

wintrust

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

traffic

TcAddFilter
TcAddFlow
TcDeleteFlow
TcDeleteFilter

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy