b709d284571bb63f7638651cab1e84e534ba94d016f4c97138f507f534b898de | Triage

Submit
Reports

Overview

overview

1

Static

static

b709d28457...de.exe

windows7-x64

1

b709d28457...de.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b709d284571bb63f7638651cab1e84e534ba94d016f4c97138f507f534b898de.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b709d284571bb63f7638651cab1e84e534ba94d016f4c97138f507f534b898de.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b709d284571bb63f7638651cab1e84e534ba94d016f4c97138f507f534b898de
Size

22KB
MD5

be55f31007691bf1f5a4902459d32cdd
SHA1

3b6afe1de91a2706f10b1c51770d57c20a141038
SHA256

b709d284571bb63f7638651cab1e84e534ba94d016f4c97138f507f534b898de
SHA512

91b63c774e9ee326fcf8ddaea14359596acc8ab71ba0a05849462ce90ce9680718c2d3c0ab7f22bf1e9e54b82ecdc5452649ddc2748700dd1ce03373ff21b091
SSDEEP

384:VCbG1xLu2Gdhe2WXqONrAxKr6+S9Pfu7n5I:zLu2XyxVdeV

Score

N/A

Malware Config

Signatures

Files

b709d284571bb63f7638651cab1e84e534ba94d016f4c97138f507f534b898de
.exe windows x86

a9e4b0e9dc5977d63dd114671c769094

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

kernel32

FindClose
FindFirstFileA
FindNextFileA
GetPrivateProfileIntA
GetPrivateProfileSectionNamesA
GetPrivateProfileStringA
GetVolumeInformationA
GetWindowsDirectoryA
LocalAlloc
ExitProcess
ReadFile
CreateFileA
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenA
CloseHandle
LocalFree
SetFilePointer

advapi32

RegQueryValueExA
RegCloseKey
RegEnumKeyExA
RegCreateKeyA

shell32

SHGetSpecialFolderPathA

Sections

ProCrypt
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ProCrypt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ProCrypt
Size: 4KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ProCrypt
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ProCrypt
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ProCrypt
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy