b59b8f09c18b7dbfa357c8fa2d5cb29e4f859c073ff10313a5190b87964a7288 | Triage

Submit
Reports

Overview

overview

8

Static

static

b59b8f09c1...88.exe

windows7-x64

8

b59b8f09c1...88.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b59b8f09c18b7dbfa357c8fa2d5cb29e4f859c073ff10313a5190b87964a7288.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b59b8f09c18b7dbfa357c8fa2d5cb29e4f859c073ff10313a5190b87964a7288.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b59b8f09c18b7dbfa357c8fa2d5cb29e4f859c073ff10313a5190b87964a7288
Size

746KB
MD5

9f16d64e579c0885f19a7d759556c720
SHA1

e757cdd08b600e82a4d83b768d808f6280f3e26f
SHA256

b59b8f09c18b7dbfa357c8fa2d5cb29e4f859c073ff10313a5190b87964a7288
SHA512

d9436c2c38909d71636e3e06c2d6162f4326686b349cd7473f408e2c235295554bb47e13a405e00a03fad442d0376fe92cb999d6481655e8cf35017cfdacfdd8
SSDEEP

12288:cg36mPYpMn11aH7BASmZwfYru98a+LYQP0UgOJ/b+M6yNAMRSbGzioESey6PiWs0:cbm/cnYfG8a+LxPRgg/bjNZRSTSey6aU

Score

N/A

Malware Config

Signatures

Files

b59b8f09c18b7dbfa357c8fa2d5cb29e4f859c073ff10313a5190b87964a7288
.exe windows x86

16a0d91af267ac60d6203f3847ff5646

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GetCurrentDirectoryW
Sleep
GetFileTime
WaitForSingleObject
MapViewOfFile
GlobalLock
ExitThread
GetDriveTypeA
HeapCreate
EnterCriticalSection
SetLastError
GetModuleHandleA
GetCommandLineA
GetCommandLineW
GlobalSize
ReadFile
CloseHandle
SuspendThread
HeapFree
SetLastError
SetFileAttributesW
GetEnvironmentVariableW
GetFileType
GetFileAttributesA

uxtheme

DrawThemeBackground
CloseThemeData
IsThemeActive
GetThemeBool
SetWindowTheme
GetThemeTextMetrics
GetThemeColor
OpenThemeData
GetWindowTheme
GetThemeTextExtent
DrawThemeEdge
CloseThemeData
GetThemeEnumValue

deskmon

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy