955a6b4f98244dcbd5a824a983fccc3e21b605e168fbfefab9368e8a43f7074a | Triage

Submit
Reports

Overview

overview

8

Static

static

955a6b4f98...4a.exe

windows7-x64

8

955a6b4f98...4a.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

955a6b4f98244dcbd5a824a983fccc3e21b605e168fbfefab9368e8a43f7074a.exe

Resource

win7-20221111-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

955a6b4f98244dcbd5a824a983fccc3e21b605e168fbfefab9368e8a43f7074a.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

955a6b4f98244dcbd5a824a983fccc3e21b605e168fbfefab9368e8a43f7074a
Size

129KB
MD5

e44cf997ab41fd6bae63e4e6b4a3c0f1
SHA1

87fd2df0baf51210691bd073a2afad72b7f9461d
SHA256

955a6b4f98244dcbd5a824a983fccc3e21b605e168fbfefab9368e8a43f7074a
SHA512

927c281badb14f7210d38172250fea5f5cdd516ca9dc0d72b528131a4eb9c4d6d1c528b62b871f44df0a4b1c7e1ff594514cb3a3f618a0759953b5f81ab52921
SSDEEP

3072:doK2HC2jtsrenrlvRvz4Evo+TTSPeHrV/T4Ra:uEAtsen5J8E9TTSPeHZr4

Score

N/A

Malware Config

Signatures

Files

955a6b4f98244dcbd5a824a983fccc3e21b605e168fbfefab9368e8a43f7074a
.exe windows x86

be5c74a89893cf771b8ffb5ae3674d69

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ExtFloodFill
SetBkMode
GetDeviceCaps
CreatePenIndirect
TextOutA
SetAbortProc
GetPixel
DPtoLP
GetTextExtentExPointW

shlwapi

StrCatBuffW
PathGetArgsW

user32

IsWindowUnicode
GetWindowRect
RegisterHotKey
FindWindowW
GetMenuInfo
GetMessageW
ReplyMessage
MapWindowPoints
GetUserObjectInformationW
SetScrollPos
TabbedTextOutW
GetScrollPos
wsprintfW

kernel32

GetUserDefaultLCID
GetComputerNameW
lstrlenW
FoldStringW
GetDateFormatW
SetLastError
GetComputerNameExW
DefineDosDeviceW
RemoveDirectoryW
LCMapStringA
GlobalFlags
GetTempPathW
CompareStringA

Exports

Exports

?wpMWKlkbQ@@YGME@Z
?fvdqngxErFckkuJauisyPk@@YGPAII@Z
?bbesmfl@@YGPA_NPAG@Z
?xvwweIhcdYvileP@@YGPAXIN@Z
?sBjobzO@@YGPAGI@Z

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 229B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy