8f745a4baf8787b8a0fad57f75e337a381d6b8d06925d4c5b84515bc46e4ee6b | Triage

Submit
Reports

Overview

overview

8

Static

static

8f745a4baf...6b.exe

windows7-x64

8

8f745a4baf...6b.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8f745a4baf8787b8a0fad57f75e337a381d6b8d06925d4c5b84515bc46e4ee6b.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

8f745a4baf8787b8a0fad57f75e337a381d6b8d06925d4c5b84515bc46e4ee6b.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

8f745a4baf8787b8a0fad57f75e337a381d6b8d06925d4c5b84515bc46e4ee6b
Size

310KB
MD5

508bf6cd383ca6fd148cd70a0354a7bc
SHA1

7b4682a3a8b88ff04efc7fe95d30e1f515054ea8
SHA256

8f745a4baf8787b8a0fad57f75e337a381d6b8d06925d4c5b84515bc46e4ee6b
SHA512

90c160f3899498fc435b847e8949c0bf655a32ec9df2132de42722df713640b24b94a134b8b5a821f04159403fecc721dda5c11adf0effa490b76df5f79982c2
SSDEEP

6144:uBlT4RgdWWEyKaIUhu71Wk/u8QN/rAL01a9mM6WAUep5UauhNehxO:KTp1EbUQRWkW9N/rAIEwMjDQUaNi

Score

N/A

Malware Config

Signatures

Files

8f745a4baf8787b8a0fad57f75e337a381d6b8d06925d4c5b84515bc46e4ee6b
.exe windows x86

4a4dac6d72b702f59009dc84a2ce1ef7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GlobalAddAtomA
GetACP
GetLocaleInfoA
GlobalUnlock
LoadLibraryExA
InterlockedExchange
GlobalFree
GetStdHandle
GlobalDeleteAtom
GetDriveTypeA
HeapCreate
RaiseException
SetErrorMode
CloseHandle
EnterCriticalSection
SetConsoleOutputCP
GetLastError
VirtualProtect
LockResource
FileTimeToLocalFileTime

user32

DrawTextA
ReleaseDC
BeginPaint
ClipCursor
GetActiveWindow
GetWindow
ShowWindow
GetCursorPos
ValidateRect
EndPaint
GetParent
OemToCharW
GetFocus
GetMenuItemInfoA
DrawEdge
GetWindowTextA
SetForegroundWindow
GetClassNameA
IsIconic

wtsapi32

WTSQueryUserToken
WTSOpenServerA
WTSCloseServer
WTSLogoffSession
WTSFreeMemory

netapi32

DsRoleCancel

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 696KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy