9b4a125565c945075ffb53435b19ae02a17782cba829075e000fb21e1daee009 | Triage

Submit
Reports

Overview

overview

Static

static

9b4a125565...09.exe

windows7-x64

9b4a125565...09.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9b4a125565c945075ffb53435b19ae02a17782cba829075e000fb21e1daee009.exe

Resource

win7-20220812-en

gh0strat rat upx

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

9b4a125565c945075ffb53435b19ae02a17782cba829075e000fb21e1daee009.exe

Resource

win10v2004-20221111-en

gh0strat rat upx

windows10-2004-x64

14 signatures

150 seconds

General

Target

9b4a125565c945075ffb53435b19ae02a17782cba829075e000fb21e1daee009
Size

1.8MB
MD5

f43e0e26a24140f351ddd2476a780093
SHA1

f94e174b33583d323fe8f5aaeb64566e97e7a6fd
SHA256

9b4a125565c945075ffb53435b19ae02a17782cba829075e000fb21e1daee009
SHA512

108c4ea892c2d41aefbd698d76174eeefbdb07e3a91b67e0f5944470df82503d3d4bec9aacabb6086ba7f7cc27f1d79819b36981cb8c7f93eb3d97fbda9b309e
SSDEEP

49152:Kfoc1Gpa6rz+jyVCxQiiBVjyqRFidr0KyD:KR1Gp3v+GVKQiiWqfieKg

Score

N/A

Malware Config

Signatures

Files

9b4a125565c945075ffb53435b19ae02a17782cba829075e000fb21e1daee009
.exe windows x86

fb3ad5cb08039bfc11d197eb1f22d218

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rasapi32

RasGetConnectStatusA

winmm

waveOutUnprepareHeader

ws2_32

WSACleanup

kernel32

MultiByteToWideChar

user32

WaitForInputIdle

gdi32

ExtTextOutA

winspool.drv

ClosePrinter

advapi32

RegSetValueExA

shell32

ShellExecuteA

ole32

CreateILockBytesOnHGlobal

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Destroy

oledlg

ord8

wininet

InternetCloseHandle

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 636KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy