b1494032d6beb13a3e1155186a9289b32a06b3fe40ee3f1142714e1b1840f252 | Triage

Submit
Reports

Overview

overview

1

Static

static

b1494032d6...52.exe

windows7-x64

1

b1494032d6...52.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b1494032d6beb13a3e1155186a9289b32a06b3fe40ee3f1142714e1b1840f252.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b1494032d6beb13a3e1155186a9289b32a06b3fe40ee3f1142714e1b1840f252.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b1494032d6beb13a3e1155186a9289b32a06b3fe40ee3f1142714e1b1840f252
Size

18KB
MD5

50680d50ddcc7cd469ddd2505729e651
SHA1

34477a7d6074b1be446f819ebd7236464cf4ca64
SHA256

b1494032d6beb13a3e1155186a9289b32a06b3fe40ee3f1142714e1b1840f252
SHA512

e105deb5e211f9726d347aae09fe994df062ec6b77429f23ffe1eec3012f22cd8bde41b995febc99598d77de78a3abf488e11af9a3cb9c952f37e6f1442ee619
SSDEEP

384:K1xVG4yM9WdTd+VgfzT6mKhiHmSS2pr+Pb:wx0bCW9d++dKsniz

Score

N/A

Malware Config

Signatures

Files

b1494032d6beb13a3e1155186a9289b32a06b3fe40ee3f1142714e1b1840f252
.exe windows x86

160d850e970b061eeac7b5cc969e1706

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrToIntA

kernel32

CreateFileA
SetUnhandledExceptionFilter
DuplicateHandle
GetEnvironmentStrings
GetSystemInfo
CloseHandle
LocalAlloc
GetDriveTypeA
GetEnvironmentVariableA
GetLastError
GetStartupInfoA
FreeEnvironmentStringsA
LocalFree
GetVersion
SetEnvironmentVariableA
DisableThreadLibraryCalls
IsBadReadPtr
RtlUnwind
ExitProcess
FormatMessageA
ReadFile
IsDebuggerPresent
VirtualAlloc
GetModuleHandleA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess

user32

wsprintfA
MessageBoxA

ole32

CoTaskMemAlloc
CoTaskMemFree

oleaut32

SysStringByteLen
SysAllocStringByteLen
SysFreeString
SysAllocString
SysAllocStringLen
SysStringLen

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy