ca117540da8c04ec29500f6994ab95c5dbf4450629db3656574f47a3c1b8cf1c | Triage

Submit
Reports

Overview

overview

8

Static

static

ca117540da...1c.exe

windows7-x64

8

ca117540da...1c.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ca117540da8c04ec29500f6994ab95c5dbf4450629db3656574f47a3c1b8cf1c.exe

Resource

win7-20221111-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca117540da8c04ec29500f6994ab95c5dbf4450629db3656574f47a3c1b8cf1c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

ca117540da8c04ec29500f6994ab95c5dbf4450629db3656574f47a3c1b8cf1c
Size

24KB
MD5

ef1a745c6e93d1c44b28489e3e3f8f39
SHA1

352d91deebf955962662c0dbf1b7a4cb5983473d
SHA256

ca117540da8c04ec29500f6994ab95c5dbf4450629db3656574f47a3c1b8cf1c
SHA512

2c19f34754c6a0e1ef9db9335684f3c1bbfb763dcaab3b231e58e397a273eabfb692a4f603ef0cacf2b8e9458c2e2c11fc7cc8d7a96e051425f87765ef505a95
SSDEEP

384:vnfgALTUkslsbrzFyrz/0kcgEtNIAuFUN0SI15hQtg4X4KOPcU6HrfyRBxwGcg:HrzUrzskcDHMFU+szX6PL6HrfyRBxwh

Score

N/A

Malware Config

Signatures

Files

ca117540da8c04ec29500f6994ab95c5dbf4450629db3656574f47a3c1b8cf1c
.exe windows x86

7505dc781b8e3f134e3da0fc38c666f8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetFileSize
FindResourceA
SetFilePointer
LoadResource
GetCurrentProcess
Process32First
WriteFile
Thread32First
TerminateThread
Sleep
SizeofResource
CreateProcessA
TerminateProcess
Thread32Next
ReadFile
FindFirstFileA
GetLastError
VirtualAlloc
CopyFileA
SetFileAttributesA
FindClose
OpenThread
Process32Next
LockResource
GetModuleFileNameA
FindNextFileA
GetModuleHandleA
CreateToolhelp32Snapshot
CloseHandle
GetTempPathA
DeleteFileA
lstrcpyA

shell32

ShellExecuteA

msvcrt

_stricmp
strrchr
memset

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy