d8dcfc904163891b4f436040c43ebaeb67ec269a8abbdb7e2fbaa2e39be99c9e | Triage

Submit
Reports

Overview

overview

1

Static

static

d8dcfc9041...9e.exe

windows7-x64

d8dcfc9041...9e.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d8dcfc904163891b4f436040c43ebaeb67ec269a8abbdb7e2fbaa2e39be99c9e.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d8dcfc904163891b4f436040c43ebaeb67ec269a8abbdb7e2fbaa2e39be99c9e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d8dcfc904163891b4f436040c43ebaeb67ec269a8abbdb7e2fbaa2e39be99c9e
Size

123KB
MD5

8c062aa0d125b8e05f7e5b7d33e507a2
SHA1

75e5f3e9f3ec7526af78218dd21b226a6de4b28e
SHA256

d8dcfc904163891b4f436040c43ebaeb67ec269a8abbdb7e2fbaa2e39be99c9e
SHA512

bb6cf22a57e972b844aabff46d2b066050f77e427e86fbcb85f511d2052ab8312d3b496b95e1ef5180e549e21a037d232b7fd42c8a9826c714c8d4d46ab12007
SSDEEP

3072:hnwbqJLVLnwEVgUkWwR9YHBQSFZgSg5ayfWevWPgoTfkyR8:Bwbq9VbbgtW/BHr5Ga0hofkyR8

Score

N/A

Malware Config

Signatures

Files

d8dcfc904163891b4f436040c43ebaeb67ec269a8abbdb7e2fbaa2e39be99c9e
.exe windows x86

7e9d251536b13401e002cce3478010f3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW
RegCreateKeyW
RegQueryValueExA
RegDeleteKeyW
RegCreateKeyA
RegEnumValueW
RegCreateKeyExW
RegSetValueExA
RegQueryValueExW
RegOpenKeyExA
RegCloseKey
RegDeleteValueW

kernel32

lstrcmpiW
CreateDirectoryExA
FindClose
VirtualQueryEx
WideCharToMultiByte
CreateProcessW
FindFirstFileA
GetTempPathA
RemoveDirectoryA
LoadLibraryExW
CreateEventW
lstrlenA
InterlockedCompareExchange
lstrcmpiA
EnumResourceNamesW
lstrlenW
MultiByteToWideChar
GetFileAttributesA
DeleteFileA
LocalFree
FindNextFileA
Heap32ListNext
LoadLibraryW
SetFileAttributesA
HeapSetInformation
GetExitCodeThread
LocalAlloc
CopyFileW
lstrcmpA
DeleteFileW

ole32

IIDFromString
CoCreateInstance

psapi

GetModuleBaseNameW

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy