d72d3abe8eba9685623ba0b3748905a396f11ab076120e1635bc18b7ccb0fc1b | Triage

Submit
Reports

Overview

overview

1

Static

static

d72d3abe8e...1b.exe

windows7-x64

d72d3abe8e...1b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d72d3abe8eba9685623ba0b3748905a396f11ab076120e1635bc18b7ccb0fc1b.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d72d3abe8eba9685623ba0b3748905a396f11ab076120e1635bc18b7ccb0fc1b.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d72d3abe8eba9685623ba0b3748905a396f11ab076120e1635bc18b7ccb0fc1b
Size

158KB
MD5

f5a6f4ab319f42ecfaa6e5e4d05b38b4
SHA1

0cfb611669050cf604cd1d8bf95d7bde16b8994d
SHA256

d72d3abe8eba9685623ba0b3748905a396f11ab076120e1635bc18b7ccb0fc1b
SHA512

1dc38676a78564f61d16980c9449edc586db235b2548b0d6fa481c2ba7aadae8e1baa92c98a00ed74e50e9b5590f4a958e350493d230f2becd0458411c809340
SSDEEP

3072:a6O4RRPJQwCU0vVSofGqXebtsyJqbyhipwMzCw5A6bLxvMWHSfQd4N:dvJQwCU0oY88YipwMzY6bLJXHOQde

Score

N/A

Malware Config

Signatures

Files

d72d3abe8eba9685623ba0b3748905a396f11ab076120e1635bc18b7ccb0fc1b
.exe windows x86

d740c6b869dac154ef6e51097ce3173a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
TerminateThread
GetLastError
CloseHandle
VirtualFree
GetFileSize
VirtualAlloc
LeaveCriticalSection
GetCurrentThreadId
OpenFileMappingA
FlushFileBuffers
Sleep
GetProcAddress
CreateFileA
ReleaseMutex

user32

RegisterClassA
LoadAcceleratorsA

netapi32

NetDfsRemoveFtRootForced

avifil32

AVISaveOptions
AVISaveOptionsFree

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 205KB - Virtual size: 561KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xvda
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.relc
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy