a1d122b9191a5eda44def1805278aa5c6d764ab211a49a51351ab3936c351f72 | Triage

Submit
Reports

Overview

overview

Static

static

a1d122b919...72.exe

windows7-x64

a1d122b919...72.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a1d122b9191a5eda44def1805278aa5c6d764ab211a49a51351ab3936c351f72.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

a1d122b9191a5eda44def1805278aa5c6d764ab211a49a51351ab3936c351f72.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a1d122b9191a5eda44def1805278aa5c6d764ab211a49a51351ab3936c351f72
Size

198KB
MD5

0cc44ab28f651393a3c2d3003d8bb7cb
SHA1

4c24e7be371ebc5b3e0fd95ac2eb50450f152823
SHA256

a1d122b9191a5eda44def1805278aa5c6d764ab211a49a51351ab3936c351f72
SHA512

672ba59de6e91084ffa62f08c27db5e793c1a29f53cd4e6d3dade4cfba9762043c1917558b38b45450f18b98e28898cbe4371b04e18fdfba08058f4932f7f709
SSDEEP

6144:4ABMlUdmTKWTE6xkKZ4CDtvhbdApS9TUIItnJIWSs:4DMWTE+HbmpS9ARnJIjs

Score

N/A

Malware Config

Signatures

Files

a1d122b9191a5eda44def1805278aa5c6d764ab211a49a51351ab3936c351f72
.exe windows x86

105901c5913a1a538cd858c2f69b9f9f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
FindAtomA
DeleteAtom
CreateSemaphoreA
AddAtomA
GetCurrentDirectoryW
SetVolumeLabelA
FindClose
GetCurrentThreadId
RemoveDirectoryA
GetModuleFileNameA
FatalExit
WaitForMultipleObjects
IsBadWritePtr
GetFileType
ClearCommBreak
CreateDirectoryA
CloseHandle
RemoveDirectoryA
CreatePipe
WriteFile
GetDriveTypeW
HeapFree
GetModuleHandleA
HeapCreate

cryptui

DllUnregisterServer
LocalEnrollNoDS
DllRegisterServer
CryptUIWizImport
CryptUIWizExport
WizardFree
CryptUIDlgFreeCAContext
CryptUIWizBuildCTL
CryptUIWizDigitalSign
WizardFree
CryptUIDlgViewContext
CryptUIStartCertMgr
LocalEnroll

iyuv_32

AboutDialogProc
AboutDialogProc
AboutDialogProc
AboutDialogProc

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy