8baa038bf879d018707fa6529cae3d4bb7f1005c8e04cd7b182729cbe8d6f826 | Triage

Submit
Reports

Overview

overview

8

Static

static

8baa038bf8...26.exe

windows7-x64

8

8baa038bf8...26.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8baa038bf879d018707fa6529cae3d4bb7f1005c8e04cd7b182729cbe8d6f826.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

8baa038bf879d018707fa6529cae3d4bb7f1005c8e04cd7b182729cbe8d6f826.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

8baa038bf879d018707fa6529cae3d4bb7f1005c8e04cd7b182729cbe8d6f826
Size

312KB
MD5

cc209d11b5eaa789370d2e0081477af4
SHA1

3798001ae90101fc419ed3fd544991d4322daba3
SHA256

8baa038bf879d018707fa6529cae3d4bb7f1005c8e04cd7b182729cbe8d6f826
SHA512

c180ea9b9343db39663d984e758622ca3e25fa938ae149bfec624ceaaf4b9dae2ac86d2e76d1b2af93eedcd42c74f61446a3097ec7881e4e71d0385a99158fe7
SSDEEP

6144:ybn8YMs5a8nqK7eEvRoOY5Oka6Q2iH0699R2rF531xjk:4n8FK7eEvyOY8kb/c4p91K

Score

N/A

Malware Config

Signatures

Files

8baa038bf879d018707fa6529cae3d4bb7f1005c8e04cd7b182729cbe8d6f826
.exe windows x86

55b5bc39563bbd5e570f185cb2448e25

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsFree
CreateThread
GetUserDefaultLangID
GetShortPathNameA
GetProcessHeap
GetPriorityClass
IsDBCSLeadByte
GetExitCodeThread
GetOEMCP
VirtualAlloc
GetThreadLocale
CreateMutexA
SetEvent
CreatePipe
GlobalFindAtomA
GetStdHandle
GetModuleHandleA
ReleaseMutex
TlsGetValue
CompareStringA
GetConsoleCP

user32

ReleaseDC
IsWindowVisible
GetSystemMetrics
ShowWindow
GetActiveWindow
RegisterClassA
GetWindowTextA
GetClassNameA
IsIconic
ValidateRect
InvalidateRect
CloseWindow
GetWindowTextLengthA
GetFocus
ReleaseDC
GetWindow
GetForegroundWindow
GetClassInfoExA
GetDC

shell32

SHGetFileInfoA
SHCreateShellItem
SHChangeNotify
SHGetFolderPathA
SHBrowseForFolderA

ntdsapi

DsBindA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy