ac5e6b54d846f5cf50cf84459d11f24ea1f3db2fe550008d67e6611c64739522 | Triage

Submit
Reports

Overview

overview

1

Static

static

ac5e6b54d8...22.exe

windows7-x64

1

ac5e6b54d8...22.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ac5e6b54d846f5cf50cf84459d11f24ea1f3db2fe550008d67e6611c64739522.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ac5e6b54d846f5cf50cf84459d11f24ea1f3db2fe550008d67e6611c64739522.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ac5e6b54d846f5cf50cf84459d11f24ea1f3db2fe550008d67e6611c64739522
Size

380KB
MD5

82aa72b206baf1c67eba875dd904d7e9
SHA1

97d73d09b9243e4a2599cbf8b9da25b1426651e6
SHA256

ac5e6b54d846f5cf50cf84459d11f24ea1f3db2fe550008d67e6611c64739522
SHA512

5a05a2696890ac43bd3ca524ab584ff72f390604fedb370cd85dccb1a598d187acb43356b04402660f3487e30233fd437cdc6686b23e18e517c63435f33c2d84
SSDEEP

6144:jQRMXiWjhtgYXL7TO6dHyF6EDWVUlMVcZOV6fGhmLjAR73t3ygCkv:jQRMtlbq6Vxh8MV9VOpO73tokv

Score

N/A

Malware Config

Signatures

Files

ac5e6b54d846f5cf50cf84459d11f24ea1f3db2fe550008d67e6611c64739522
.exe windows x86

4b5cd94491ba248e7a4b915ac56ad1d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
GetEnvironmentVariableW
GetPrivateProfileIntW
GlobalFree
GlobalSize
InterlockedExchange
GetModuleHandleW
VirtualAlloc
CreateMutexA
ResetEvent
ResumeThread
CloseHandle
LocalFree
GetCommandLineA
FindVolumeClose
CreateEventA
GetACP
GetExitCodeProcess
lstrlenA
WriteFile

advapi32

IsValidSid
ClearEventLogA
IsTextUnicode
RegQueryValueW
RegDeleteKeyA
CreateServiceA
IsValidAcl
RegCreateKeyExW
ControlService
RegCloseKey
RegEnumKeyW
CloseEventLog
RegDeleteValueA

admparse

ResetAdmDirtyFlag
ResetAdmDirtyFlag
ResetAdmDirtyFlag
ResetAdmDirtyFlag
AdmClose

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 370KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy