952f87de18839a6e536e49d15694f2f1e4d79b93f0ed19c8b7a20d1b0550bfa5 | Triage

Submit
Reports

Overview

overview

Static

static

952f87de18...a5.exe

windows7-x64

952f87de18...a5.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

952f87de18839a6e536e49d15694f2f1e4d79b93f0ed19c8b7a20d1b0550bfa5.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

952f87de18839a6e536e49d15694f2f1e4d79b93f0ed19c8b7a20d1b0550bfa5.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

952f87de18839a6e536e49d15694f2f1e4d79b93f0ed19c8b7a20d1b0550bfa5
Size

196KB
MD5

10a18aed75c7ff25ba01ca290618448c
SHA1

f8921f3bbac5fbda036a030f278a6f87b1366180
SHA256

952f87de18839a6e536e49d15694f2f1e4d79b93f0ed19c8b7a20d1b0550bfa5
SHA512

54831ab93583d7e0f4e2dfa89a50982d0977548964369854e5bd75f1f6f2a6152ad02e8d1040f39576e207e80ce24d928d0feb9b3954d1138d54d7926e47a70a
SSDEEP

6144:PEHyo/utbA5iJ4g7yvYKPGnppCGxgXLInX:TgoJ4NbPGpBxKLy

Score

N/A

Malware Config

Signatures

Files

952f87de18839a6e536e49d15694f2f1e4d79b93f0ed19c8b7a20d1b0550bfa5
.exe windows x86

57f4bb022e1b17e64faaa2b05d4c7963

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryW

kernel32

GetSystemTimeAsFileTime
LocalFree
GetCPInfo
GlobalFlags
FindClose
GetModuleHandleW
GetComputerNameExW
SetSystemTimeAdjustment

comdlg32

PageSetupDlgW
GetOpenFileNameW

user32

InvalidateRgn
RedrawWindow
GetNextDlgTabItem
AdjustWindowRect
RegisterClassExA
GetCaretPos
InternalGetWindowText
SetRect
CreateCaret
GetForegroundWindow
CreateWindowExA
SetWindowLongW
DispatchMessageW
PtInRect
CopyImage
ReleaseDC

gdi32

ResizePalette
SetDIBitsToDevice
GetDeviceCaps
EnumFontsW
LineDDA
StartDocW
AddFontResourceW

comctl32

ImageList_Draw
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Remove

Exports

Exports

ModifyMutexOriginal@16
SendWindowOld@12
LoadVersionOriginal@8
List@8
EnumListItemOld@12

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy