d1cf05a9a2175db317b0db1b00a1a9a4dbe121abb2d8f048004f81703ea2315a | Triage

Submit
Reports

Overview

overview

8

Static

static

d1cf05a9a2...5a.exe

windows7-x64

8

d1cf05a9a2...5a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d1cf05a9a2175db317b0db1b00a1a9a4dbe121abb2d8f048004f81703ea2315a.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

d1cf05a9a2175db317b0db1b00a1a9a4dbe121abb2d8f048004f81703ea2315a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d1cf05a9a2175db317b0db1b00a1a9a4dbe121abb2d8f048004f81703ea2315a
Size

305KB
MD5

bd772bfe19aba1dcba07a422d1f51cba
SHA1

377a7666ef919536992d6b0f7931876f3e67211b
SHA256

d1cf05a9a2175db317b0db1b00a1a9a4dbe121abb2d8f048004f81703ea2315a
SHA512

ed6ba89c558915cf73c93db7ddaeb42098dd8851d96e657f66079f0cdf0fb6bda45f546e46bec47b52bba35019be8f491552df396ebe69b69fa776d06c6bc32e
SSDEEP

6144:JlHVhyDJusX8svRTe9LpgkDKsvxgXGf48mzU:JlHutJ86Te9Lp8smGZ/

Score

N/A

Malware Config

Signatures

Files

d1cf05a9a2175db317b0db1b00a1a9a4dbe121abb2d8f048004f81703ea2315a
.exe windows x86

d423dccb404bf805b9c57cc3cbd7286a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
InterlockedExchange
CreateMutexA
GetACP
GetPrivateProfileIntW
SuspendThread
CreateEventW
CloseHandle
GetEnvironmentVariableW
GetCommandLineW
VirtualAllocEx
lstrlenA
GetSystemInfo
WriteFile
LoadLibraryW
LocalFree
ReleaseMutex
LocalSize
GlobalFree
GetStdHandle

advapi32

IsValidSid
IsValidSecurityDescriptor
CreateServiceA
CloseEventLog
ControlService
IsTextUnicode
RegEnumKeyW
RegDeleteValueA
RegCreateKeyExW
ClearEventLogW
RegQueryValueW
InitializeSid
RegCloseKey

devenum

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

hdwwiz.cpl

InstallNewDevice

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy