ced361788c1d3fa67448439e048fbc83b19078e60eb470c683f18e511d23dc94 | Triage

Submit
Reports

Overview

overview

7

Static

static

ced361788c...94.exe

windows7-x64

7

ced361788c...94.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ced361788c1d3fa67448439e048fbc83b19078e60eb470c683f18e511d23dc94.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ced361788c1d3fa67448439e048fbc83b19078e60eb470c683f18e511d23dc94.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

ced361788c1d3fa67448439e048fbc83b19078e60eb470c683f18e511d23dc94
Size

177KB
MD5

8dd05bce6614a306fe510b474e742a39
SHA1

a78abfa2ad9c246a5553923c4b31b2f93ed6d39a
SHA256

ced361788c1d3fa67448439e048fbc83b19078e60eb470c683f18e511d23dc94
SHA512

e09fd5ce108c6147cf42a4d3dbd76c91c1980ed1612c3c5bf4d2596fbd2a2e3c7e2a5563c8ef0e0fcd0d7450a2dab07c5fb533fe0a0b4e5c76526376bccfe7c1
SSDEEP

3072:Tr5dwBXo96wDkG7QXQmzDl2EHzxtqm+eLsYV6yNNEk8m0XK84zsbR2UmI:pdw1ogwQX/BNf+eLHDb8mEsso

Score

N/A

Malware Config

Signatures

Files

ced361788c1d3fa67448439e048fbc83b19078e60eb470c683f18e511d23dc94
.exe windows x86

768ba8fb3680dc23057b742712900845

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxW
IsWindow

shell32

SHGetSpecialFolderLocation
SHCreateDirectoryExW
CommandLineToArgvW

kernel32

ExitProcess
FindFirstFileW
FindNextFileW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFullPathNameW
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
lstrlenW
InterlockedExchange

msvcrt

_cexit
_controlfp
_exit
_initterm
_ismbblead
_wcsdup
_wcslwr
exit
free
memset
printf
wcsstr
wprintf
_amsg_exit
__setusermatherr
__set_app_type
__p__fmode
__p__commode
_XcptFilter
__getmainargs

gdi32

PolyDraw
ArcTo

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

Exports

Exports

AHeartbeat
ChConvertFromHex
DestroyWindow
FIsSpaceW
FlushState
PSTCreateTypeSubType_NoUI
Sync

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 407B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy