fafcf400a893d7aa1735273acbda8ad76b996005df9ad820c8ec0b685a9d3f92 | Triage

Submit
Reports

Overview

overview

1

Static

static

fafcf400a8...92.exe

windows7-x64

1

fafcf400a8...92.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fafcf400a893d7aa1735273acbda8ad76b996005df9ad820c8ec0b685a9d3f92.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

fafcf400a893d7aa1735273acbda8ad76b996005df9ad820c8ec0b685a9d3f92.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

fafcf400a893d7aa1735273acbda8ad76b996005df9ad820c8ec0b685a9d3f92
Size

20KB
MD5

a81945de174cad096f60499da3e382ed
SHA1

f24373e45391c325954723b6f631a7c4adeb6806
SHA256

fafcf400a893d7aa1735273acbda8ad76b996005df9ad820c8ec0b685a9d3f92
SHA512

dc8854950842520d309169d76b63a341f20188048735c6f1b57f3f3313782c937f30b09af652109dfaa476297696ca916a7cea28a44df98e4c14d2b41a214336
SSDEEP

384:5CebJ9dPk1vvPXtdQpF08VHGPNDVHX8OOnKYktq:5CebJTkJX7Q/07VDKbktq

Score

N/A

Malware Config

Signatures

Files

fafcf400a893d7aa1735273acbda8ad76b996005df9ad820c8ec0b685a9d3f92
.exe windows x86

02cc41dde90a1c59f124ab62682de093

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrToIntA

kernel32

CreateMutexA
WaitForMultipleObjects
InterlockedCompareExchange
ResetEvent
GetCurrentProcessId
GetCurrentProcess
GetLastError
ExitProcess
CreateProcessA
FormatMessageA
ReadFile
CreateFileA
VirtualAlloc
GetModuleHandleA
InterlockedIncrement
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
SetEvent
CloseHandle
CreateEventA
LocalFree
IsDebuggerPresent

user32

wsprintfA
MessageBoxA
ScreenToClient
GetDC
FillRect
GetSysColor
ReleaseDC

gdi32

GetDeviceCaps
DeleteObject
SelectObject
SetBkColor
SetTextColor
DeleteDC

ole32

CoTaskMemAlloc
CoTaskMemFree

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy