bd78dc3d031e7a802f77c049175ad5567263b08781568f2918a70dc56dfd4292 | Triage

Submit
Reports

Overview

overview

8

Static

static

bd78dc3d03...92.exe

windows7-x64

8

bd78dc3d03...92.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

bd78dc3d031e7a802f77c049175ad5567263b08781568f2918a70dc56dfd4292.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

bd78dc3d031e7a802f77c049175ad5567263b08781568f2918a70dc56dfd4292.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

bd78dc3d031e7a802f77c049175ad5567263b08781568f2918a70dc56dfd4292
Size

747KB
MD5

af1137cb72535db830622cf9e76c2ced
SHA1

14fa9564754cc20c1fbc4d8f74b3562418eedc9b
SHA256

bd78dc3d031e7a802f77c049175ad5567263b08781568f2918a70dc56dfd4292
SHA512

c98dd9098492a08112b9a272661b35214b5e753cdefc62e54cfefeb3d44ff4d9dcaac85c35bfdc9c0952af85594f07c0fafdb9ef39a854f8008426ccef33d0a0
SSDEEP

12288:fX8C9llQwpu/VWrjCxb3QaGqzk+SOpeh6uokek+nNojSLZLXA7L87:kG7QNtWrYzQaGqwNTfop/N7

Score

N/A

Malware Config

Signatures

Files

bd78dc3d031e7a802f77c049175ad5567263b08781568f2918a70dc56dfd4292
.exe windows x86

b72e17f969d0f28761f874cf88718b4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
WaitForMultipleObjects
GetModuleHandleA
GetDriveTypeW
Beep
CreateSemaphoreA
IsBadWritePtr
lstrlenW
CreateDirectoryA
FatalExit
HeapFree
GetStdHandle
GetCommandLineA
HeapCreate
CloseHandle
WriteFile
GetStdHandle
GetFileAttributesW
GetFileType
GlobalSize
GetModuleFileNameA
GetCurrentThreadId
GetCurrentDirectoryW
ClearCommBreak
CreatePipe

cryptui

CryptUIWizBuildCTL
LocalEnroll
WizardFree
CryptUIDlgViewContext
CryptUIDlgFreeCAContext
DllUnregisterServer
DllRegisterServer
CryptUIWizExport
CryptUIWizDigitalSign
CryptUIWizImport
LocalEnrollNoDS
CryptUIStartCertMgr
WizardFree

iyuv_32

AboutDialogProc
AboutDialogProc
AboutDialogProc
AboutDialogProc

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy