88f12ab73ac0ec94682e626ad062c769df495ad930ef36598cb7041a41c59722 | Triage

Submit
Reports

Overview

overview

8

Static

static

88f12ab73a...22.exe

windows7-x64

8

88f12ab73a...22.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

88f12ab73ac0ec94682e626ad062c769df495ad930ef36598cb7041a41c59722.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

88f12ab73ac0ec94682e626ad062c769df495ad930ef36598cb7041a41c59722.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

88f12ab73ac0ec94682e626ad062c769df495ad930ef36598cb7041a41c59722
Size

310KB
MD5

0391ceef86887edadca057904b588570
SHA1

ef07326b600dfa8112a33393b8b720270927a205
SHA256

88f12ab73ac0ec94682e626ad062c769df495ad930ef36598cb7041a41c59722
SHA512

1d997968732c28f6f525a6536baffd3c94bc6a9ba8165ac5aa666fb8e309935af81c5d04b27fab174984509d9a62ad767bdb54862274bd6fc02dc4adb3412f5e
SSDEEP

6144:WcvltKea0aKaeOwwZmzP7KUo95beRE9/1pRM6GetqUxaG:WcThbvSmb7Bo95be43RM6GeIUX

Score

N/A

Malware Config

Signatures

Files

88f12ab73ac0ec94682e626ad062c769df495ad930ef36598cb7041a41c59722
.exe windows x86

f6011a850bd00b3de51c966179811e94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
ExitProcess
lstrcmpA
InterlockedIncrement
GetDiskFreeSpaceW
WriteFileEx
lstrcpyW
SetEnvironmentVariableA
GetPrivateProfileSectionA
GetModuleHandleW
WaitForSingleObject
GetFileAttributesA
LoadLibraryA
GetExitCodeProcess
GetPrivateProfileIntA
InterlockedDecrement
GetPrivateProfileIntA
GetDiskFreeSpaceW
FindResourceW
GetLongPathNameA
Sleep
Sleep
VirtualAllocEx

apphelp

SdbCreateMsiTransformFile
AllowPermLayer
ApphelpCheckExe
ApphelpCheckIME

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 304KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy