1d85a1aebe239805900fff869acefd7de9291e437bab9c5f3a5788114934a884 | Triage

Submit
Reports

Overview

overview

8

Static

static

1d85a1aebe...84.exe

windows7-x64

8

1d85a1aebe...84.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1d85a1aebe239805900fff869acefd7de9291e437bab9c5f3a5788114934a884.exe

Resource

win7-20221111-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

1d85a1aebe239805900fff869acefd7de9291e437bab9c5f3a5788114934a884.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

1d85a1aebe239805900fff869acefd7de9291e437bab9c5f3a5788114934a884
Size

309KB
MD5

6747bb8cfc01f6bc61750a5a77678faa
SHA1

27f56e3c2768660e3f08581edd4f154b6c72da97
SHA256

1d85a1aebe239805900fff869acefd7de9291e437bab9c5f3a5788114934a884
SHA512

efdecfb9f65b5872d778cb189a50b8937dc24b00f3163d50b17565c3043d383a27023f19de313fe703cf7f1e6599130d5ce1592c876ff2bc66c8afa5aee53f69
SSDEEP

3072:4pU5AB+6p1mX+0XeJGuoDbAt0f2j8QwIFCtMq2Kd4PulvvGIC46qFfg+9kcmsHfN:3Up1mPuJnC2gQwRMq22lnOOV9kyN

Score

N/A

Malware Config

Signatures

Files

1d85a1aebe239805900fff869acefd7de9291e437bab9c5f3a5788114934a884
.exe windows x86

8ee8bb69ac4888a3ecc788d5cb4ffea5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetModuleHandleA
FindClose
GetTickCount
SetEvent
CloseHandle
GetBinaryTypeA
TlsGetValue
SearchPathA
VirtualProtect
FreeConsole
GetCommandLineA
OpenMutexA
GetComputerNameA
GetLastError
CreateSemaphoreA
CreateMutexA
ReleaseMutex
Sleep
DeleteCriticalSection

shell32

ShellMessageBoxA
ShellAboutA
DragQueryFileA
SheChangeDirA
SHGetSettings
SHGetNewLinkInfo
DragQueryPoint
DragAcceptFiles
DragFinish
SHFree
SHAlloc
SheGetDirA
SHGetMalloc
SHGetDiskFreeSpaceA

loghours

DialinHoursDialogEx
LogonScheduleDialog
DirSyncScheduleDialog
DirSyncScheduleDialogEx
DialinHoursDialog

advapi32

RegCloseKey

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy