935aaa3a36f73efd8b6511cbe2443ad6640d864dd79caa5201fc67674bcde361 | Triage

Submit
Reports

Overview

overview

8

Static

static

935aaa3a36...61.exe

windows7-x64

8

935aaa3a36...61.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

935aaa3a36f73efd8b6511cbe2443ad6640d864dd79caa5201fc67674bcde361.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

935aaa3a36f73efd8b6511cbe2443ad6640d864dd79caa5201fc67674bcde361.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

935aaa3a36f73efd8b6511cbe2443ad6640d864dd79caa5201fc67674bcde361
Size

745KB
MD5

0e13d64e707053933c258816155c9cc4
SHA1

15c0d341be840a539a39f3c51f285facde3e0972
SHA256

935aaa3a36f73efd8b6511cbe2443ad6640d864dd79caa5201fc67674bcde361
SHA512

4992d20d077dd63e50694f327243c9bdb099daaccb19e4130acca988204c2cf2c4d5530fb2b595df6554c460d7bdb37a2dc1c5a9712bb1a92d04f74101264840
SSDEEP

12288:6ct0kFLdL0+Q27t1xKoS6P+wx9uLljq74/v9GBElEJgx2tsNjh4EwXLr2t+z6yKg:6ct0UL90+/7t1IoS+Nx9AtIWiX0jh4Lh

Score

N/A

Malware Config

Signatures

Files

935aaa3a36f73efd8b6511cbe2443ad6640d864dd79caa5201fc67674bcde361
.exe windows x86

6afe0a4190909c7681b57a9fac8d43de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
SuspendThread
SetFileAttributesW
GetCommandLineA
Sleep
SetLastError
EnterCriticalSection
GetEnvironmentVariableW
GetFileType
GetCurrentDirectoryW
GetCommandLineW
IsBadReadPtr
ExitProcess
CloseHandle
HeapFree
GetFileTime
MapViewOfFile
GetModuleHandleA
SetLastError
GlobalLock
GetFileAttributesA
WaitForSingleObject
HeapCreate
LocalSize
ReadFile

uxtheme

GetThemeColor
CloseThemeData
CloseThemeData
DrawThemeBackground
IsThemeActive
GetThemeTextExtent
GetThemeBool
SetWindowTheme
DrawThemeEdge
GetThemeTextMetrics
OpenThemeData
GetThemeEnumValue
GetWindowTheme

deskmon

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy