b2a3c32f149c1e7997467dd058f3e015bb9182a9acf118533327ec8cba302a9a | Triage

Submit
Reports

Overview

overview

8

Static

static

b2a3c32f14...9a.exe

windows7-x64

8

b2a3c32f14...9a.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b2a3c32f149c1e7997467dd058f3e015bb9182a9acf118533327ec8cba302a9a.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b2a3c32f149c1e7997467dd058f3e015bb9182a9acf118533327ec8cba302a9a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

b2a3c32f149c1e7997467dd058f3e015bb9182a9acf118533327ec8cba302a9a
Size

745KB
MD5

0abffa7ec6d078a47a322a11c386d778
SHA1

4d041df8bbdfa8fb5c6cd221b0038ff631769d6e
SHA256

b2a3c32f149c1e7997467dd058f3e015bb9182a9acf118533327ec8cba302a9a
SHA512

c7c3bcd3275df8a3ee5fb4e28c2154b71141f94d320c1ca9496aff33df23731e5b475e9da4ece7f98c5b96237c3b7bdfe34c85ae34d83f086bf9eb5a47788df0
SSDEEP

12288:ms0RKrziNg7s2RT0q1cocFyND3upn05ILfHTfa5Gw2J:GKqg73RCoVjY05y/Tfm2

Score

N/A

Malware Config

Signatures

Files

b2a3c32f149c1e7997467dd058f3e015bb9182a9acf118533327ec8cba302a9a
.exe windows x86

e3ee4f09908276eb0a759dcc86288ee2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
MapViewOfFile
GetModuleHandleA
GetCommandLineA
LocalSize
WaitForSingleObject
ExitProcess
IsBadReadPtr
EnterCriticalSection
SuspendThread
GetFileTime
GetFileAttributesA
SetFileAttributesW
ReadFile
GlobalLock
GetEnvironmentVariableW
SetLastError
GetCurrentDirectoryW
CloseHandle
HeapCreate
Sleep
GetCommandLineW
GetFileType
GetDriveTypeA
HeapFree

uxtheme

GetThemeTextMetrics
GetWindowTheme
DrawThemeEdge
DrawThemeBackground
GetThemeEnumValue
SetWindowTheme
GetThemeTextExtent
GetThemeColor
CloseThemeData
OpenThemeData
CloseThemeData
IsThemeActive
GetThemeBool

dbnmpntw

ConnectionVer
ConnectionVer
ConnectionVer
ConnectionVer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy