a71f2e0109618cfc1fd0f782abe587095c937122f5f6bc7733291d98e87363ef | Triage

Submit
Reports

Overview

overview

8

Static

static

a71f2e0109...ef.exe

windows7-x64

8

a71f2e0109...ef.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a71f2e0109618cfc1fd0f782abe587095c937122f5f6bc7733291d98e87363ef.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

a71f2e0109618cfc1fd0f782abe587095c937122f5f6bc7733291d98e87363ef.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

12 signatures

150 seconds

General

Target

a71f2e0109618cfc1fd0f782abe587095c937122f5f6bc7733291d98e87363ef
Size

169KB
MD5

2fa8c49146d6ffc8d9f09c2a8452d82b
SHA1

be814dd82b6a82c8964a3f49d6562d39c0671aaa
SHA256

a71f2e0109618cfc1fd0f782abe587095c937122f5f6bc7733291d98e87363ef
SHA512

1abe80bc64e71e8592f8661303f99215745eff2f423c01c5d86214cf90d3b9ef723ff254f6d19c9c23607df4a35b11e9b1b21ccf3f551bd307bd0b73fec262a6
SSDEEP

3072:PbEEc5zzcQSpTsgk/+FIL0sASZEuAMi6ztvyQ+pTvSVi3P9nIsHNYBdL:2zzc5k/+SQsvZO6ztvmWy1Y9

Score

N/A

Malware Config

Signatures

Files

a71f2e0109618cfc1fd0f782abe587095c937122f5f6bc7733291d98e87363ef
.exe windows x86

cd68694b993e6f12a89cf0fdaa4ee7d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetLocalTime
SetConsolePalette
EnterCriticalSection
RaiseException
GetStdHandle
LocalSize
GlobalAddAtomA
LoadResource
GetOEMCP
GlobalLock
DeleteAtom
GetProfileStringA
CloseHandle
SetCommBreak
LoadLibraryExA
GlobalFree
ExitThread
GetProcessHeap
GlobalFindAtomA
lstrcpyn

user32

GetWindowTextLengthA
GetClassNameA
BeginPaint
GetWindow
ShowWindow
GetActiveWindow
GetFocus
GetWindowTextA
ReleaseDC
DrawEdge
IsIconic
GetForegroundWindow
AlignRects
GetClassInfoExA
ValidateRect
EndPaint
GetDC
CloseWindow
GetParent

wsock32

WSAGetLastError
WSASetBlockingHook
WSAAsyncGetServByPort
WSAStartup
WSACleanup

linkinfo

CreateLinkInfoA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy