c89838bb74aa1bcf120d304683e2c113dea7938aca4b0823ea4a4991366c1867 | Triage

Submit
Reports

Overview

overview

8

Static

static

c89838bb74...67.exe

windows7-x64

8

c89838bb74...67.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c89838bb74aa1bcf120d304683e2c113dea7938aca4b0823ea4a4991366c1867.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

c89838bb74aa1bcf120d304683e2c113dea7938aca4b0823ea4a4991366c1867.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

c89838bb74aa1bcf120d304683e2c113dea7938aca4b0823ea4a4991366c1867
Size

746KB
MD5

f3bc82fb9934a8c529188bee2c332715
SHA1

223874b46d5bbc3f4433a59f87ccdc7e7c6c9b04
SHA256

c89838bb74aa1bcf120d304683e2c113dea7938aca4b0823ea4a4991366c1867
SHA512

4a4ac0b0cf6e6763f14490ea5ea48fc760b8d12cab25f87dbdbc7930c09accbb56bf50d97f8ee93b66fe41e2aa64097b70464beef71e9d108bfce274ce84a352
SSDEEP

12288:Ayvl6PZu2vj4vsZoRG4ztBc9nL86rxEaxo3vJ8owQM4bwe34I8G1U/QA6Ch0eKaq:D6Rfj4vsChRq9nLVxEBvLyotTDQQCh0n

Score

N/A

Malware Config

Signatures

Files

c89838bb74aa1bcf120d304683e2c113dea7938aca4b0823ea4a4991366c1867
.exe windows x86

2050138d3afde8366ebdd8cee8778733

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
GetCurrentDirectoryW
IsBadReadPtr
SuspendThread
GetCommandLineA
GetModuleHandleA
GlobalSize
GetFileAttributesA
GetDriveTypeA
GetEnvironmentVariableW
GlobalLock
EnterCriticalSection
SetLastError
HeapCreate
SetFileAttributesW
GetCommandLineW
WaitForSingleObject
CloseHandle
ReadFile
Sleep
SetLastError
GetFileTime
HeapFree
GetFileType
MapViewOfFile

uxtheme

CloseThemeData
SetWindowTheme
IsThemeActive
OpenThemeData
CloseThemeData
GetWindowTheme
GetThemeColor
DrawThemeBackground
GetThemeEnumValue
GetThemeTextExtent
GetThemeTextMetrics
DrawThemeEdge
GetThemeBool

deskmon

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy