35a82b76048348a43f3467e3dca58e79b8c8c814793be9a234e8eb036c1f3ffb | Triage

Submit
Reports

Overview

overview

Static

static

35a82b7604...fb.exe

windows7-x64

35a82b7604...fb.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

35a82b76048348a43f3467e3dca58e79b8c8c814793be9a234e8eb036c1f3ffb.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

35a82b76048348a43f3467e3dca58e79b8c8c814793be9a234e8eb036c1f3ffb.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

35a82b76048348a43f3467e3dca58e79b8c8c814793be9a234e8eb036c1f3ffb
Size

54KB
MD5

f3c6ce1dc5c523584ea6e5968e0ff414
SHA1

0e5243a76b608d8bd406119f06820349470812f5
SHA256

35a82b76048348a43f3467e3dca58e79b8c8c814793be9a234e8eb036c1f3ffb
SHA512

d4e13d54f2de765e8932b260b8e84ba4ecc36ae1db497bda49c6576e328b510166597b794b6a5a4ee04ec06ae7a986f72f0259a9e4d8fe6dc0f9b319c88ed571
SSDEEP

1536:WiOiAmx5imBC7MRf/0juWkEAD2kGW3ymfUy:WiOibi4COUjLkXRGW39fUy

Score

N/A

Malware Config

Signatures

Files

35a82b76048348a43f3467e3dca58e79b8c8c814793be9a234e8eb036c1f3ffb
.exe windows x86

cf90a157d25b2d8aab8bd4e82e4e74fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetExitCodeProcess
GetStringTypeW
WaitForSingleObject
ReadConsoleA
HeapCreate
InterlockedDecrement
lstrcpyW
Heap32First
lstrcmpA
GetDiskFreeSpaceW
GetCurrentDirectoryA
InterlockedIncrement
SetEnvironmentVariableA
GetPrivateProfileIntA
CloseHandle
GetDiskFreeSpaceW
ExitProcess
LoadLibraryA
ReadFileEx
GetLastError
FindResourceW

adsldpc

ADsDeleteClassDefinition
ADsExecuteSearch
ADsCloseSearchHandle
ADsEnumAttributes

clbcatq

SetSetupSave
DllGetClassObject
ComPlusMigrate
CheckMemoryGates
SetupOpen
CheckMemoryGates
ComPlusMigrate
ComPlusMigrate
SetupOpen
SetupOpen
CheckMemoryGates
DllGetClassObject
SetSetupSave

version

VerFindFileA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy