aa4abc3d31f74943f6c397dc0411e86ad093689cf3121f6a821e9f0b2dde69d7 | Triage

Submit
Reports

Overview

overview

5

Static

static

aa4abc3d31...d7.exe

windows7-x64

5

aa4abc3d31...d7.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

aa4abc3d31f74943f6c397dc0411e86ad093689cf3121f6a821e9f0b2dde69d7.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

aa4abc3d31f74943f6c397dc0411e86ad093689cf3121f6a821e9f0b2dde69d7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

aa4abc3d31f74943f6c397dc0411e86ad093689cf3121f6a821e9f0b2dde69d7
Size

34KB
MD5

ad789bae5fd4d2735b74afbedb7989e5
SHA1

4a2541d04d14e41f9de501d4fd69daabcef7ff10
SHA256

aa4abc3d31f74943f6c397dc0411e86ad093689cf3121f6a821e9f0b2dde69d7
SHA512

f9cdfce15c8d84c96182cecc569fdffd86d0d6f5589d9008e5f09f0882794c8950c59ef6cd7ab662cf410f59ab3510b7bbb27a92f115d9d81d34f2c8be38748f
SSDEEP

768:XWtuk868R8Z8s888m8E8Qvc7IhatR5tmr8unZz6plfnC/c14QSVj54PQijoZwh:XQukzq+5hRpfvc7Iha/5tsd3tQujLWph

Score

N/A

Malware Config

Signatures

Files

aa4abc3d31f74943f6c397dc0411e86ad093689cf3121f6a821e9f0b2dde69d7
.exe windows x86

50fed4648889680a7550aa475311b7c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
memmove
_CIlog
floor
ceil
_CIexp
fclose
fabs
malloc
free
strlen

kernel32

GetModuleHandleA
HeapCreate
HeapDestroy
ExitProcess
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
ReadFile
GetLastError
GetEnvironmentVariableA
SetEnvironmentVariableA
FreeLibrary
LoadLibraryA
GetProcAddress
HeapReAlloc
HeapAlloc
TlsAlloc
GetVersionExA

user32

DestroyIcon
FillRect

gdi32

GetObjectType
DeleteObject
GetObjectA
CreateCompatibleDC
GetDIBits
DeleteDC
CreateDIBSection
SelectObject
BitBlt
CreateBitmap
SetPixel
GetStockObject

wsock32

closesocket
WSACleanup
WSAStartup

winmm

mciSendCommandA

Sections

.code
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy