bab1fbea03fdc805db99f6f791b69cc6a461d5d4266f0ad58c8b168ca9285036 | Triage

Submit
Reports

Overview

overview

8

Static

static

bab1fbea03...36.exe

windows7-x64

8

bab1fbea03...36.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bab1fbea03fdc805db99f6f791b69cc6a461d5d4266f0ad58c8b168ca9285036.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

bab1fbea03fdc805db99f6f791b69cc6a461d5d4266f0ad58c8b168ca9285036.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

bab1fbea03fdc805db99f6f791b69cc6a461d5d4266f0ad58c8b168ca9285036
Size

768KB
MD5

0943ded43c03b84056a0ca759bf32c35
SHA1

2e661ecb34efe3196ba737b23d69fdf7c7f57dd8
SHA256

bab1fbea03fdc805db99f6f791b69cc6a461d5d4266f0ad58c8b168ca9285036
SHA512

753b302f7e1ff3ed58e5ee5398c07e77760ed3074ee40f71908813caf6ce3ecd7d0675b22bef5e36ec017c22475753ee9c3f8e3f9fa32694e0d7b3873fcc03ee
SSDEEP

12288:W6KU0y3kBKZqcyE+6nX80WyUDBdodiHYTRtm3HnXgOOki8Fr9Be+G242Wc0oA3Tl:WjNyUBdPELMp9b4Tb2HXCkVbMn242WdZ

Score

N/A

Malware Config

Signatures

Files

bab1fbea03fdc805db99f6f791b69cc6a461d5d4266f0ad58c8b168ca9285036
.exe windows x86

01482d4407a30affe2cf237ee081e283

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
DeleteFileW
VirtualProtect
CreateMutexW
GetProcessHeap
GetFileSize
GetStdHandle
HeapSize
GetPriorityClass
OpenSemaphoreA
CreateDirectoryW
SetLastError
CreateSemaphoreA
GetFileAttributesA
CreateFileA
SetLastError
Sleep
GetLocalTime
HeapDestroy
SetEvent
MapViewOfFile
CreateHardLinkA
ReadConsoleA
GetTickCount
GetStartupInfoA

dsprop

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

serialui

drvSetDefaultCommConfigA
drvGetDefaultCommConfigA
drvSetDefaultCommConfigW
drvGetDefaultCommConfigW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy