a5f64f3931d59116f6d8c4c4dc7af3f8a3f900d027cdb7a6093334bd084e20e8 | Triage

Submit
Reports

Overview

overview

8

Static

static

a5f64f3931...e8.exe

windows7-x64

8

a5f64f3931...e8.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a5f64f3931d59116f6d8c4c4dc7af3f8a3f900d027cdb7a6093334bd084e20e8.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

a5f64f3931d59116f6d8c4c4dc7af3f8a3f900d027cdb7a6093334bd084e20e8.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a5f64f3931d59116f6d8c4c4dc7af3f8a3f900d027cdb7a6093334bd084e20e8
Size

316KB
MD5

41ce3cf9f043faff20a96ef56ccaaa87
SHA1

156fa975f40c99656eeb1fd1981db489ba536561
SHA256

a5f64f3931d59116f6d8c4c4dc7af3f8a3f900d027cdb7a6093334bd084e20e8
SHA512

0aa94f4f503ca498ea747a33d12c802c22e057196d2bb76c8dc04e92a2df812d45400ff14dc007ffb20297534efd001ecf47f1886a343bea70cfcb77a37b4178
SSDEEP

6144:ZhgMbyt+/lFO7UXdj5hcD28Ek5k+6GGv+H1wpZnjZr0J/x:ZhgxtAA70R5uq89H6EHe3pUx

Score

N/A

Malware Config

Signatures

Files

a5f64f3931d59116f6d8c4c4dc7af3f8a3f900d027cdb7a6093334bd084e20e8
.exe windows x86

b9150d12094f2e2975364241fb79ae98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadPriority
FindAtomA
GetCurrentProcessId
GetEnvironmentStringsA
GetCurrentProcess
GetCompressedFileSizeA
GetCurrentThread
GetStdHandle
VirtualProtect
GetSystemDirectoryA
WriteConsoleA
InterlockedExchange
HeapCreate
GetExpandedNameA
GetModuleHandleA
FlushFileBuffers
GetACP
FormatMessageA
IsDebuggerPresent
GlobalFree
OpenSemaphoreA

user32

IsIconic
SetActiveWindow
GetWindowTextLengthA
GetClassNameA
FrameRect
GetDlgItem
FillRect
ReleaseDC
EndPaint
GetFocus
GetParent
SetForegroundWindow
BeginPaint
ShowWindow
DrawTextA
GetWindow
ValidateRgn
wsprintfA
GetCursorPos

linkinfo

DestroyLinkInfo
ResolveLinkInfoA
IsValidLinkInfo
GetLinkInfoData
GetCanonicalPathInfoA

rtutils

LogEventW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy