ff727c1b527d41b1cf46e3957bdd1624152b1e3c72a7a0ed78aaa21227ca2f7e | Triage

Submit
Reports

Overview

overview

1

Static

static

ff727c1b52...7e.exe

windows7-x64

1

ff727c1b52...7e.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ff727c1b527d41b1cf46e3957bdd1624152b1e3c72a7a0ed78aaa21227ca2f7e.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ff727c1b527d41b1cf46e3957bdd1624152b1e3c72a7a0ed78aaa21227ca2f7e.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ff727c1b527d41b1cf46e3957bdd1624152b1e3c72a7a0ed78aaa21227ca2f7e
Size

155KB
MD5

2deb13a850ec6c515632619ced4fe623
SHA1

df695b275e8ffb9f8448ed73cafc0f0a6e1a181a
SHA256

ff727c1b527d41b1cf46e3957bdd1624152b1e3c72a7a0ed78aaa21227ca2f7e
SHA512

167b5df735a6e697c6092c4a53ed26cca68b900407190682394ac42546c6819b6c502e2c7289d1f3739e231afc480bfc101a9dfc29137d1935601e6689565538
SSDEEP

3072:YDMsWgwOI/6NEcbEiizznBTr1MT+nUsH9+NKe5ACrXkm8OXT0qT:YMzLcH0nBPGT4UsH9+rAK8YT

Score

N/A

Malware Config

Signatures

Files

ff727c1b527d41b1cf46e3957bdd1624152b1e3c72a7a0ed78aaa21227ca2f7e
.exe windows x86

2990ce0e355d7326cb46a8d816e3916b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AllocateAndInitializeSid
CryptReleaseContext
AdjustTokenPrivileges
RegCloseKey

kernel32

GetCurrentProcessId
SetConsoleCP
HeapAlloc
Sleep
lstrlenW
VirtualProtect
ExitProcess
DeleteCriticalSection
CloseHandle
GetModuleFileNameA
GetStartupInfoA
RaiseException
GetOEMCP
GetACP
GetStringTypeW
GetCommandLineA
InterlockedIncrement
InterlockedCompareExchange
GetTickCount
EnterCriticalSection
SetStdHandle
GetModuleHandleA

user32

CharNextW
ShowWindow
SetFocus
ScreenToClient
SetWindowTextW

ole32

CoTaskMemRealloc
StgSetTimes

msvcrt

_purecall

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 125KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy