bb2eab2c273aebff7ab1787204e8b0c55acd58ca0da3aecb866f5aa5a13f66ba | Triage

Submit
Reports

Overview

overview

8

Static

static

bb2eab2c27...ba.exe

windows7-x64

8

bb2eab2c27...ba.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

bb2eab2c273aebff7ab1787204e8b0c55acd58ca0da3aecb866f5aa5a13f66ba.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

bb2eab2c273aebff7ab1787204e8b0c55acd58ca0da3aecb866f5aa5a13f66ba.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

bb2eab2c273aebff7ab1787204e8b0c55acd58ca0da3aecb866f5aa5a13f66ba
Size

747KB
MD5

dac9adc7a47398e5da043b071a39d214
SHA1

35c5232b6c6ed2860a1b340ae3d678f78dfa4684
SHA256

bb2eab2c273aebff7ab1787204e8b0c55acd58ca0da3aecb866f5aa5a13f66ba
SHA512

ecf981f20e8e582b32c6020d55500fa2cd96cef4386d298d93435ccd3de2287eaed01305cedd2f49eb889c717255c9b8d16e1db19f2691fcb8cc87ffedb790ad
SSDEEP

12288:47be/paOBv4d3Ya975bJwJV24W3WshnfBcJ3ezBrqOX24mwD:47a/ptsTbJ2JpM4ez5bm6

Score

N/A

Malware Config

Signatures

Files

bb2eab2c273aebff7ab1787204e8b0c55acd58ca0da3aecb866f5aa5a13f66ba
.exe windows x86

8164a0ea78e90b78898e37fc538b0276

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
CloseHandle
GetModuleHandleA
SetLastError
lstrlenA
HeapDestroy
GetEnvironmentVariableA
GetCommandLineA
GetCommandLineA
DeleteFileA
HeapCreate
CreateSemaphoreA
WriteConsoleA
GetConsoleTitleW
EnumResourceTypesW
CloseHandle
GlobalFlags
GetFileAttributesW
GetDriveTypeW
CreateEventW

advapi32

RegEnumKeyA
CloseEventLog
ControlService
CreateServiceW
RegCreateKeyExW
IsValidSid
IsValidAcl
IsValidSid
RegDeleteValueA
IsValidSid
IsValidSid
InitializeSid
IsValidSid

ddrawex

DllRegisterServer
DllRegisterServer
DllRegisterServer
DllRegisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy