9796cd0007ca80371b5213c529c94764ec6bf8fb41dc9bd5bb18abc617a572fa | Triage

Submit
Reports

Overview

overview

8

Static

static

9796cd0007...fa.exe

windows7-x64

8

9796cd0007...fa.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9796cd0007ca80371b5213c529c94764ec6bf8fb41dc9bd5bb18abc617a572fa.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

9796cd0007ca80371b5213c529c94764ec6bf8fb41dc9bd5bb18abc617a572fa.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

9796cd0007ca80371b5213c529c94764ec6bf8fb41dc9bd5bb18abc617a572fa
Size

308KB
MD5

cd724b29d8edd15eb650706cbb7d454f
SHA1

2403f51a40fce532c4f7913b7e9e20fcacf5e2ee
SHA256

9796cd0007ca80371b5213c529c94764ec6bf8fb41dc9bd5bb18abc617a572fa
SHA512

84723d722a17dc0fd6a149349635163cbf54680375585f97cad83ada6e2b98b1cb1c71047f894a3012417f6469d46728c13b62a3a2c423b1ec356088d695c86d
SSDEEP

6144:8TJDND1XOMHs0rns4J4huBc9/8vL8/sZZHWyUBCxBO:q5rHZruhuBc9/8z8/sZNUB1

Score

N/A

Malware Config

Signatures

Files

9796cd0007ca80371b5213c529c94764ec6bf8fb41dc9bd5bb18abc617a572fa
.exe windows x86

c72478e5c03bd1aa18da012b8ecfe00c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
Heap32First
GetModuleHandleW
lstrcmpA
GetACP
GetLongPathNameA
LoadLibraryA
GetPrivateProfileIntA
WaitForSingleObject
FindResourceW
ExitProcess
ReadFileEx
SetEnvironmentVariableA
lstrcpyW
HeapCreate
GetDiskFreeSpaceW
GetStringTypeW
GetCurrentDirectoryA
GetDiskFreeSpaceW
InterlockedDecrement
GetPrivateProfileIntA
GetExitCodeProcess
GetPrivateProfileSectionA

apphelp

ApphelpCheckIME
ApphelpCheckExe
SdbCreateMsiTransformFile
AllowPermLayer

clbcatq

ComPlusMigrate
ComPlusMigrate
CheckMemoryGates
SetupOpen
CheckMemoryGates
SetupOpen
DllGetClassObject
CheckMemoryGates
SetupOpen
SetSetupSave
ComPlusMigrate
SetSetupSave
DllGetClassObject

version

VerFindFileA

Sections

.text
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rsrc
Size: 304KB - Virtual size: 308KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy