f72cf4e3032088813c10b078d6405ab6f38cc988ca4ad655eb67d221d85b175e | Triage

Submit
Reports

Overview

overview

1

Static

static

f72cf4e303...5e.exe

windows7-x64

1

f72cf4e303...5e.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f72cf4e3032088813c10b078d6405ab6f38cc988ca4ad655eb67d221d85b175e.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

f72cf4e3032088813c10b078d6405ab6f38cc988ca4ad655eb67d221d85b175e.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

f72cf4e3032088813c10b078d6405ab6f38cc988ca4ad655eb67d221d85b175e
Size

17KB
MD5

f1dfff064b51dae755529f29e8028c5c
SHA1

cb68e3d0bc6ecad9e56a577a528e76f051f636ee
SHA256

f72cf4e3032088813c10b078d6405ab6f38cc988ca4ad655eb67d221d85b175e
SHA512

ff84e1eb2aff617357233b2003c44d67c36255e8a81060ddd73226f37f192c378a24b38cb869ca8f134c32f391ef68542da567fbd0f263271826422c9cc33faa
SSDEEP

192:0K0BNhYCTE3VwX09eOPN0Kciv0svTF7V+eFQ5Z5/mUPOecw8hvbl0tD:aDTE3WgeOVB8svTFPW7HOsGjl0tD

Score

N/A

Malware Config

Signatures

Files

f72cf4e3032088813c10b078d6405ab6f38cc988ca4ad655eb67d221d85b175e
.exe windows x86

df0422d2df65e973ad4cdb6ca9b1731c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
GetThreadLocale
GetConsoleCP
SetEvent
CreatePipe
GetThreadPriority
GetProcessHeap
GetModuleHandleA
ReleaseMutex
TlsGetValue
GlobalFindAtomA
CompareStringA
GetUserDefaultLangID
GetStdHandle
VirtualAlloc
CreateMutexA
CreateThread
GetShortPathNameA
IsDBCSLeadByte
TlsFree
GetOEMCP

user32

GetDC
GetWindowTextA
GetWindowTextLengthA
GetForegroundWindow
GetClassInfoExA
ValidateRect
GetSystemMetrics
CloseWindow
ReleaseDC
ShowWindow
RegisterClassA
IsIconic
InvalidateRect
GetClassNameA
GetActiveWindow
GetWindow
ReleaseDC
GetFocus
IsWindowVisible

shell32

SHGetFileInfoA
SHGetFolderPathA
SHBrowseForFolderA
SHChangeNotify
SHCreateShellItem

ntdsapi

DsBindA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy