a383ea7acf49b1c32c437817f3e44a54ea49704ad96288564633196c28ec80c4 | Triage

Submit
Reports

Overview

overview

8

Static

static

a383ea7acf...c4.exe

windows7-x64

8

a383ea7acf...c4.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a383ea7acf49b1c32c437817f3e44a54ea49704ad96288564633196c28ec80c4.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

a383ea7acf49b1c32c437817f3e44a54ea49704ad96288564633196c28ec80c4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

a383ea7acf49b1c32c437817f3e44a54ea49704ad96288564633196c28ec80c4
Size

196KB
MD5

6d6623b5e79b09ec71e2f13f7a394afb
SHA1

17c8e45d7b0ae1dd74e9492decb3f06d74d7f6ab
SHA256

a383ea7acf49b1c32c437817f3e44a54ea49704ad96288564633196c28ec80c4
SHA512

d64ee42c9fe5aca326ec7b64f834e1dd51ed71bf91c998c217726e8251e26a1f4a0527b7afae0642508be992ac3e0a0f05e6ba85e870862fcc7d6a4575ad7077
SSDEEP

6144:rDShPcaqyH+9hqsFDpuUHd8gLsO/MI43nYWi5WMdkW:/0caqyHDQJdnLtt6nNOWMdkW

Score

N/A

Malware Config

Signatures

Files

a383ea7acf49b1c32c437817f3e44a54ea49704ad96288564633196c28ec80c4
.exe windows x86

ae87acbcc01cee90a65c854e510a597e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharLowerBuffW
SetMenuItemBitmaps
MapDialogRect
RegisterWindowMessageW
MessageBoxExA
RegisterClassExA
CopyAcceleratorTableW
GetKeyNameTextW
CharNextA
RegisterClassExW
GetMenuItemID
GetClassInfoW
IsDlgButtonChecked
InvalidateRect
GetMessageExtraInfo
SendMessageTimeoutA
InflateRect

gdi32

SetPaletteEntries
CreateBitmap
CreateBrushIndirect
CreateDiscardableBitmap
GetMapMode
CreateSolidBrush
PatBlt
SetWindowOrgEx

shlwapi

PathIsFileSpecA

kernel32

CreateSemaphoreW
GetHandleInformation
WaitForMultipleObjectsEx
IsBadStringPtrW
QueryPerformanceCounter
GetLocaleInfoA
LoadLibraryExA
SetCurrentDirectoryW

Exports

Exports

ModifyTaskA@4
IsStringExW@8
CallKeyNameOriginal@12
CancelThreadW@12
GetSectionOld@8

Sections

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy