b1028febb70fc0885f622eab0e932269c0090cf5cdfed590cc5a70f7eeece3ab | Triage

Submit
Reports

Overview

overview

8

Static

static

b1028febb7...ab.exe

windows7-x64

8

b1028febb7...ab.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b1028febb70fc0885f622eab0e932269c0090cf5cdfed590cc5a70f7eeece3ab.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

b1028febb70fc0885f622eab0e932269c0090cf5cdfed590cc5a70f7eeece3ab.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b1028febb70fc0885f622eab0e932269c0090cf5cdfed590cc5a70f7eeece3ab
Size

375KB
MD5

853b06ae8c6ec796d919e0df6f2128d8
SHA1

a6984d16f9ee74e1b8acc8ed6bc6ac47bb8cf163
SHA256

b1028febb70fc0885f622eab0e932269c0090cf5cdfed590cc5a70f7eeece3ab
SHA512

76db3c9fca199273e0b069d3a7f7504157170cbe76367bc5b29b52d7e5f0610838766a3cbef32b784e1e0ca7430928a530fc96f6d2710f34db94a7b929081ad1
SSDEEP

6144:aaxTh86sfb2BVpk9kcDj3glx6OIpOR5xI0mqtjDIyyco6utQG3aAm:aWTBsMWOcwlQg5xMwjDItIubbm

Score

N/A

Malware Config

Signatures

Files

b1028febb70fc0885f622eab0e932269c0090cf5cdfed590cc5a70f7eeece3ab
.exe windows x86

da77b0e1a1035770f510e6e833865199

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PulseEvent
LoadLibraryW
LocalFree
HeapCreate
GetCurrentDirectoryA
lstrcpyA
FindClose
Sleep
CreateThread
lstrlenA
GetCurrentThreadId
GlobalUnlock
GetCommandLineA
CreateFileW
GetSystemTime
CloseHandle
GetModuleHandleA
ResetEvent
UnmapViewOfFile
GetComputerNameA

user32

CreateIcon
GetCaretPos
DrawEdge
SetFocus
GetDlgItem
DrawMenuBar
IsWindow
DispatchMessageA
FillRect
CreateWindowExA
CheckRadioButton
GetDC
CallWindowProcA

cryptui

CryptUIDlgCertMgr
CryptUIDlgSelectStoreA
LocalEnroll
CryptUIDlgSelectCA
WizardFree

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 299KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy