96f8c6ede65d7c119547f73ead328e0eb2379cf36d2d90fdb26b34e0c3a5aeee | Triage

Submit
Reports

Overview

overview

1

Static

static

96f8c6ede6...ee.exe

windows7-x64

1

96f8c6ede6...ee.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

96f8c6ede65d7c119547f73ead328e0eb2379cf36d2d90fdb26b34e0c3a5aeee.exe

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

96f8c6ede65d7c119547f73ead328e0eb2379cf36d2d90fdb26b34e0c3a5aeee.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

96f8c6ede65d7c119547f73ead328e0eb2379cf36d2d90fdb26b34e0c3a5aeee
Size

289KB
MD5

921b8f4b26072ca46021899899f3ab31
SHA1

4101fe493fc09e4353448007623829ff80e56ca3
SHA256

96f8c6ede65d7c119547f73ead328e0eb2379cf36d2d90fdb26b34e0c3a5aeee
SHA512

998f68387c1210e28a122adf56559a90c37722cc70a07cbec5f12d5860950f048e08f4d9f18d5bdce2493555756e3d7d5d3cba4f242e3b83ae6b62d467c0d1df
SSDEEP

6144:1XRDHUU1LaqMRHQECf0iDTNGuxL6+a9+dsDnhp4vq/N0p5I3:1Xuua3HkXTNGiLBSnhpaq1CI3

Score

N/A

Malware Config

Signatures

Files

96f8c6ede65d7c119547f73ead328e0eb2379cf36d2d90fdb26b34e0c3a5aeee
.exe windows x86

7dc53bed88f5ce57b5039df809639d67

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
EnterCriticalSection
VirtualProtect
GetACP
GlobalFree
GlobalDeleteAtom
GetDriveTypeA
RaiseException
GlobalUnlock
LockResource
GlobalAddAtomA
InterlockedExchange
GetStdHandle
SetConsoleOutputCP
LoadLibraryExA
GetLocaleInfoA
SetErrorMode
Sleep
HeapCreate
CloseHandle
FileTimeToLocalFileTime

user32

BeginPaint
IsIconic
GetParent
GetCursorPos
SetForegroundWindow
GetFocus
ClipCursor
GetMenuItemInfoA
ReleaseDC
GetActiveWindow
OemToCharBuffA
ValidateRect
GetWindowTextA
EndPaint
GetClassNameA
ShowWindow
DrawEdge
GetWindow
DrawTextA

ntdsapi

DsGetSpnA
DsIsMangledDnA
DsFreeNameResultA
DsBindA
DsCrackNamesA

netapi32

DsRoleCancel

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 968KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy