c72830cf086243d998ee4f8c734f8a0154e6b9d7bcddbd86c466648d05e4be20 | Triage

Submit
Reports

Overview

overview

8

Static

static

c72830cf08...20.exe

windows7-x64

8

c72830cf08...20.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c72830cf086243d998ee4f8c734f8a0154e6b9d7bcddbd86c466648d05e4be20.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

c72830cf086243d998ee4f8c734f8a0154e6b9d7bcddbd86c466648d05e4be20.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

c72830cf086243d998ee4f8c734f8a0154e6b9d7bcddbd86c466648d05e4be20
Size

306KB
MD5

dfbec6b3e7e4e41a7d036ecc8e7e4545
SHA1

cfcf3931dff44efc03efcf3f692745f09a8160ca
SHA256

c72830cf086243d998ee4f8c734f8a0154e6b9d7bcddbd86c466648d05e4be20
SHA512

00667317ff00cb4b46e54292a9ccd9728677c48d87500c1445a41c86f746e7645104d352ea58cc42618642a3d0ce5218346174b086faf80eb8b1f1914b16f3be
SSDEEP

6144:xp5Q1zw72KcSckK1ZOYLDHnc8hiskEBp+4gChFGDr:xp5Q1zw64cDr8u7kEBpOCzMr

Score

N/A

Malware Config

Signatures

Files

c72830cf086243d998ee4f8c734f8a0154e6b9d7bcddbd86c466648d05e4be20
.exe windows x86

9b3676d31061ef316694b284805a0804

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleW
CreateFileA
TlsGetValue
CloseHandle
GetConsoleTitleW
GetCalendarInfoA
GetTickCount
VirtualProtectEx
GetConsoleMode
LeaveCriticalSection
FindClose
GetModuleFileNameA
lstrlenW
CreateDirectoryW
GetDriveTypeA
GetCommandLineW
GetFileSize
GetModuleHandleA
RemoveDirectoryA
GlobalFree
DeleteFileA
EnterCriticalSection
Sleep
GetStartupInfoA
InitializeCriticalSection

user32

FillRect
PeekMessageA
GetWindowDC
MessageBoxA
GetSysColor
GetWindowLongA
IsWindowEnabled
IsWindow
EqualRect
GetWindowLongA
wsprintfA
IsWindowVisible
DispatchMessageA

cryptdlg

CertConfigureTrustA
CertTrustInit
CertTrustCleanup
CertTrustCertPolicy

advapi32

RegCloseKey

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy