91dd13c45ac4bcb7902b571b974eb51cae42db707852f707b554fd15665c26b1 | Triage

Submit
Reports

Overview

overview

8

Static

static

91dd13c45a...b1.exe

windows7-x64

8

91dd13c45a...b1.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

91dd13c45ac4bcb7902b571b974eb51cae42db707852f707b554fd15665c26b1.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

91dd13c45ac4bcb7902b571b974eb51cae42db707852f707b554fd15665c26b1.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

91dd13c45ac4bcb7902b571b974eb51cae42db707852f707b554fd15665c26b1
Size

769KB
MD5

492d6c17dbdeb5d5793598ad4863c833
SHA1

c1af6ca9c2911ccdfe3cc5e123890addb376cbe3
SHA256

91dd13c45ac4bcb7902b571b974eb51cae42db707852f707b554fd15665c26b1
SHA512

094c22b71ce70627f31888a93629c4ad53fc3dabece7c9e1f06877d445ef35bf4faf382319b21e9310cdbf3e7dc1cae7507e24ba4961e81afc9c4b2956989ef8
SSDEEP

12288:5dLvjQ0kTEdjzD+kTmKJ8rv7GrC6qCUYtlwXc+sNVUlx07abUk2ifk3NLxGgUUPs:3L7kTizVmLGrCJWZNZ7a2iIL4Gt9B

Score

N/A

Malware Config

Signatures

Files

91dd13c45ac4bcb7902b571b974eb51cae42db707852f707b554fd15665c26b1
.exe windows x86

372bacadc3f42bbfd1661f6493dcd7aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
GetStartupInfoA
CreateFileA
GetStdHandle
VirtualProtect
RemoveDirectoryW
ReleaseSemaphore
DeleteFileA
lstrlenW
CreateMutexA
LoadLibraryA
CreateDirectoryW
CreateFileMappingW
FatalExit
GetVersion
HeapDestroy
ReleaseSemaphore
GetCommandLineW
SetLastError
GetFileSize
SetLastError
RemoveDirectoryW
MapViewOfFile
OpenEventW
HeapSize

cryptui

CryptUIDlgFreeCAContext
CryptUIWizDigitalSign
CryptUIStartCertMgr
DllRegisterServer
LocalEnrollNoDS
CryptUIWizExport
LocalEnroll
CryptUIWizBuildCTL
WizardFree
CryptUIWizImport
DllUnregisterServer
CryptUIDlgViewContext
WizardFree

iernonce

RunOnceExProcess
InitCallback
RunOnceExProcess
InitCallback

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 761KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy