f154e212b14c5ca0eed76579c0090814d63ccb71959e24cb0c9eadd4fe56c36c | Triage

Submit
Reports

Overview

overview

8

Static

static

f154e212b1...6c.exe

windows7-x64

8

f154e212b1...6c.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f154e212b14c5ca0eed76579c0090814d63ccb71959e24cb0c9eadd4fe56c36c.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

f154e212b14c5ca0eed76579c0090814d63ccb71959e24cb0c9eadd4fe56c36c.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

12 signatures

150 seconds

General

Target

f154e212b14c5ca0eed76579c0090814d63ccb71959e24cb0c9eadd4fe56c36c
Size

169KB
MD5

4cfd9a4618663eb782788350d146dad9
SHA1

263301b1199bcd7ab75978c16fc0a090307dfe3c
SHA256

f154e212b14c5ca0eed76579c0090814d63ccb71959e24cb0c9eadd4fe56c36c
SHA512

5ab49292a5f865150f61f469afd46d69268744732e853bbdb09382babde94ae753b74306d9ca5c4d5d35b3fd971a4201437bb78f0269c5189c09ce4377eb3603
SSDEEP

3072:jvgFvOcv/HmQn0U3bmwD8q7m/vossjrhAFsN+bFpRWGtu+4WUxduBwW:jvc3Z3bmw9MvPsHhXN+kGtuFDO

Score

N/A

Malware Config

Signatures

Files

f154e212b14c5ca0eed76579c0090814d63ccb71959e24cb0c9eadd4fe56c36c
.exe windows x86

e3bbd95a5ed70df259772e17d92d4092

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GlobalFree
GetStdHandle
VirtualAlloc
ExitThread
GlobalAddAtomA
RaiseException
GlobalCompact
LocalSize
GetProcessHeap
SetCommBreak
GlobalLock
GetCommState
GetOEMCP
GetProfileStringA
lstrcpyn
EnterCriticalSection
DeleteAtom
GlobalFindAtomA
LoadResource
LoadLibraryExA

user32

GetWindowTextA
GetWindow
ValidateRect
DrawEdge
GetParent
EndPaint
CloseWindow
ShowWindow
GetWindowTextLengthA
GetFocus
GetClassInfoExA
GetDC
GetActiveWindow
IsIconic
GetForegroundWindow
BeginPaint
ReleaseDC
GetClassNameA
AlignRects

wsock32

WSAGetLastError
WSACleanup
WSASetBlockingHook
WSAAsyncGetServByPort
WSAStartup

duser

AutoTrace

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy