f65a6ffb9a90f5615b91357b2930bf457da467bf929fac5e0c0cc2db7c7fa2af | Triage

Submit
Reports

Overview

overview

1

Static

static

f65a6ffb9a...af.exe

windows7-x64

1

f65a6ffb9a...af.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f65a6ffb9a90f5615b91357b2930bf457da467bf929fac5e0c0cc2db7c7fa2af.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f65a6ffb9a90f5615b91357b2930bf457da467bf929fac5e0c0cc2db7c7fa2af.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

f65a6ffb9a90f5615b91357b2930bf457da467bf929fac5e0c0cc2db7c7fa2af
Size

4.6MB
MD5

db3c32e7ad4a4b8e09c3d099aa8b8226
SHA1

aa4a52f3af37606c0fe68f65fde214e7aa177fb2
SHA256

f65a6ffb9a90f5615b91357b2930bf457da467bf929fac5e0c0cc2db7c7fa2af
SHA512

100e8c7c9339b9a75d23e66e36a06fcd7def7db29117fb9d5c0f01b4de9619571dc0456befd4029b8f89d0d10f6443e891fef5d63a678a192ed7b2d451d0dbd2
SSDEEP

98304:hav6e2aZOAguULrb2yN9Fcc8TOl4oN9W82O9EfiVZ6olyo:cv6nMguerbbPn8Tk3Hvn9EaVZFV

Score

N/A

Malware Config

Signatures

Files

f65a6ffb9a90f5615b91357b2930bf457da467bf929fac5e0c0cc2db7c7fa2af
.exe windows x86

e070b9677425a65ad12a0c4dd16cb0c9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
WriteFile
RtlUnwind
ReadFile
DeleteCriticalSection
GetSystemTimeAsFileTime
GetTickCount
InterlockedIncrement
UnmapViewOfFile
CreateFileW
GetCurrentThread
lstrlenA
GetModuleFileNameA
GetCurrentThreadId
GetOEMCP
lstrcpyA
LCMapStringW
GetCurrentProcessId
CloseHandle
MultiByteToWideChar

user32

GetDesktopWindow
PostMessageA
SendMessageW
DefWindowProcA
ReleaseDC
TranslateMessage
GetParent
EndDialog
LoadStringA
IsWindowVisible
PostThreadMessageW
GetClientRect
LoadImageW
GetForegroundWindow
SetForegroundWindow

gdi32

SetROP2
CreateMetaFileW
CreateCompatibleDC
CreateRectRgnIndirect
CombineRgn
SetRectRgn
DeleteMetaFile

advapi32

SetSecurityDescriptorGroup
CryptDestroyHash
CryptSetHashParam

Sections

.text
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy