a57db88e7c9927e8565c5131229e8d25a1429e5f8c94df2a15f91eef527ffd9f | Triage

Submit
Reports

Overview

overview

8

Static

static

a57db88e7c...9f.exe

windows7-x64

8

a57db88e7c...9f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a57db88e7c9927e8565c5131229e8d25a1429e5f8c94df2a15f91eef527ffd9f.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a57db88e7c9927e8565c5131229e8d25a1429e5f8c94df2a15f91eef527ffd9f.exe

Resource

win10v2004-20220812-en

discovery persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

a57db88e7c9927e8565c5131229e8d25a1429e5f8c94df2a15f91eef527ffd9f
Size

752KB
MD5

cf70c529cfef8974a4fe8733e1412ec1
SHA1

270fcaa9007afe0a2c9adc03c7a005a83b863f55
SHA256

a57db88e7c9927e8565c5131229e8d25a1429e5f8c94df2a15f91eef527ffd9f
SHA512

6b1b849190ccce5107bc2fd0c4b5550083ed771bf3056ac80e706675a0b2a72fc879138b3bff52d6ebb850ab58637f9bf632a7005ddcf56c95c3d028e5cd3123
SSDEEP

12288:SznL4USPb1iq+m6GgVi9+cE+Pm390qEo4qJonKz94fYflnTnlOuWuGZjA81o/:SznEjPbn+AgVQm3OBqJon1fYBrlPWuG0

Score

N/A

Malware Config

Signatures

Files

a57db88e7c9927e8565c5131229e8d25a1429e5f8c94df2a15f91eef527ffd9f
.exe windows x86

7f9484ca016d1800f7757c7a68dcc1e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
HeapDestroy
CloseHandle
GetCurrentDirectoryA
SetEndOfFile
CreateFileA
GetEnvironmentVariableA
GetStartupInfoW
GetFileSize
SetLastError
GetTickCount
DeleteFileA
SuspendThread
GetTickCount
GetModuleHandleA
InitializeCriticalSection
CreateMutexW
ReleaseMutex
HeapCreate
HeapSize
ResetEvent
ExitProcess
WaitForSingleObject
AddAtomA
GetSystemInfo

shell32

DllUnregisterServer
DragQueryFileA
StrChrA
ShellAboutA
SHGetMalloc
DuplicateIcon
ShellMessageBoxA
SHGetSettings
DragAcceptFiles
SHFree
DragFinish
ExtractIconA
SHGetDiskFreeSpaceA

dswave

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 745KB - Virtual size: 745KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy