a5fe42a312af6a26957707de6436a4ec9f59cd0d47e0b2f3eb5a66f2d6f07dfe | Triage

Submit
Reports

Overview

overview

7

Static

static

a5fe42a312...fe.exe

windows7-x64

7

a5fe42a312...fe.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a5fe42a312af6a26957707de6436a4ec9f59cd0d47e0b2f3eb5a66f2d6f07dfe.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

a5fe42a312af6a26957707de6436a4ec9f59cd0d47e0b2f3eb5a66f2d6f07dfe.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a5fe42a312af6a26957707de6436a4ec9f59cd0d47e0b2f3eb5a66f2d6f07dfe
Size

82KB
MD5

2cc1981155bcb30d2fad341426713eb0
SHA1

54cbb68838e03ba5b3dcb0c248a7366d2134052f
SHA256

a5fe42a312af6a26957707de6436a4ec9f59cd0d47e0b2f3eb5a66f2d6f07dfe
SHA512

ef2df66c83f165d377702b4ac35a9cb6352ee5dd7d6a8e5f4405d8f9cd9432e249cb786b3f3b5763d1fb1076eebccce49ac0d243aa0366f60c1304043bcce02d
SSDEEP

1536:QoYc+w0eB+IF4Dlygsn813DnPnzo5lRTCC/S:RYJS+IOxs8FnPy9C

Score

N/A

Malware Config

Signatures

Files

a5fe42a312af6a26957707de6436a4ec9f59cd0d47e0b2f3eb5a66f2d6f07dfe
.exe windows x86

90ff88e8c3ed2274ae69f6545a3b2b3e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetModuleHandleA
SearchPathA
TlsGetValue
SetEvent
ReleaseMutex
Sleep
CreateMutexA
GetVersionExW
SetLastError
GetTickCount
OpenMutexA
DeleteCriticalSection
FindClose
CloseHandle
FreeConsole
GetLastError
CreateSemaphoreA
GetComputerNameA
VirtualProtect

advapi32

FreeSid
LsaSetSecret
IsValidSid
RegCloseKey
OpenEventLogA
CloseEventLog
CloseTrace
RegEnumKeyExA
GetFileSecurityA
RegLoadKeyA
RegCreateKeyExA
IsTextUnicode
LsaFreeMemory
LsaClose
RegCloseKey

loghours

DirSyncScheduleDialog
DialinHoursDialog
DialinHoursDialogEx
DirSyncScheduleDialogEx
LogonScheduleDialog

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 75KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xpbcugg
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy