fa21642af7d41f5faef120d702fd17e31a91fff03006a92ee4378c86eb014287 | Triage

Submit
Reports

Overview

overview

8

Static

static

fa21642af7...87.exe

windows7-x64

8

fa21642af7...87.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

fa21642af7d41f5faef120d702fd17e31a91fff03006a92ee4378c86eb014287.exe

Resource

win7-20221111-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

fa21642af7d41f5faef120d702fd17e31a91fff03006a92ee4378c86eb014287.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

fa21642af7d41f5faef120d702fd17e31a91fff03006a92ee4378c86eb014287
Size

27KB
MD5

fe100510c2756b347d9ba836aad05c40
SHA1

0e53acc9a2e14446e0bb43653a393be3e8ef61b3
SHA256

fa21642af7d41f5faef120d702fd17e31a91fff03006a92ee4378c86eb014287
SHA512

4d863000e810b336268e1ca1441f4901b7c1aed47ccecb44394ae784f235b61f40cafb396739503e9c99dff6b0b334894fc1865a22a21bb4156179084e446892
SSDEEP

384:MwxDJFzm0Rv6+T5ObxoP3yGJTyDhfAvUH2vwXVOUZyh/:fH1rRi+TSiP3hJTyDhfcUHyOx4

Score

N/A

Malware Config

Signatures

Files

fa21642af7d41f5faef120d702fd17e31a91fff03006a92ee4378c86eb014287
.exe windows x86

55fe999cfc142965336e36c4b79ad679

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameA
GetSystemTime
GetTickCount
ResetEvent
lstrlenA
SetLastError
CreateFileA
HeapCreate
CreateThread
GetCommandLineW
Sleep
GetTimeFormatW
GetModuleHandleA
UnmapViewOfFile
FindVolumeClose
LoadLibraryExW
CloseHandle
LocalUnlock
LocalFree
GetCurrentDirectoryW

user32

GetDC
DispatchMessageA
IsWindow
GetKeyState
CreateWindowExA
DrawEdge
GetDlgItem
CallWindowProcA
DrawMenuBar
SetFocus
GetComboBoxInfo
FillRect
CheckRadioButton

cryptui

WizardFree
CryptUIDlgCertMgr
LocalEnroll
CryptUIDlgSelectCA
CryptUIDlgSelectStoreA

hdwwiz.cpl

AddHardwareWizard

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy