b5c744ab1fc450009da0e179446b3c95ad9419122e170d6eb3fba26de435fab2 | Triage

Submit
Reports

Overview

overview

3

Static

static

b5c744ab1f...b2.exe

windows7-x64

3

b5c744ab1f...b2.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b5c744ab1fc450009da0e179446b3c95ad9419122e170d6eb3fba26de435fab2.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

b5c744ab1fc450009da0e179446b3c95ad9419122e170d6eb3fba26de435fab2.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b5c744ab1fc450009da0e179446b3c95ad9419122e170d6eb3fba26de435fab2
Size

36KB
MD5

bcdfb64719d313f192909fe52a2b7c15
SHA1

415d51fffd81a4cd16dd217a9f9ad9bb7e8bb761
SHA256

b5c744ab1fc450009da0e179446b3c95ad9419122e170d6eb3fba26de435fab2
SHA512

15c1e6f2174acfcbe4f7ecd3613fa47b72363b0b65115a62055ac07453c0de7fe58c08be559469aab8c2f6c0f4ba7bc378bb330fac1f5ebd08512e946c3e13b7
SSDEEP

384:H+Szu4dRZpQeiXH+6xjPNHcykSg319IkZc4XE/YviTxHJcPcgFp1m3NEEI/cJ:eeupvZV8V9I/EvuxHxYzEENE

Score

N/A

Malware Config

Signatures

Files

b5c744ab1fc450009da0e179446b3c95ad9419122e170d6eb3fba26de435fab2
.exe windows x86

94f6fd990c20e81d8ff61aaef6ed5ab6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

GetUserNameA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

kernel32

AddAtomA
CopyFileA
ExitProcess
FindAtomA
GetAtomNameA
GetComputerNameA
GetModuleFileNameA
GetSystemDirectoryA
GetVersion
SetUnhandledExceptionFilter
Sleep

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_beginthread
_cexit
_endthread
_iob
_onexit
_setmode
abort
atexit
atoi
fflush
fprintf
free
malloc
memset
printf
puts
rand
signal
sprintf
srand
strcat
strchr
strcpy
strlen
strncpy
system
time

ws2_32

WSACleanup
WSAGetLastError
WSAStartup
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyname
inet_ntoa
recv
send
socket

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy