1641e5bcd136fb218cc662dca2a65631c6d11cf54c24d3a975b915ec78d8a8c0 | Triage

Submit
Reports

Overview

overview

8

Static

static

1641e5bcd1...c0.exe

windows7-x64

8

1641e5bcd1...c0.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1641e5bcd136fb218cc662dca2a65631c6d11cf54c24d3a975b915ec78d8a8c0.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

1641e5bcd136fb218cc662dca2a65631c6d11cf54c24d3a975b915ec78d8a8c0.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

1641e5bcd136fb218cc662dca2a65631c6d11cf54c24d3a975b915ec78d8a8c0
Size

22KB
MD5

2abd56bba6ebe4aa1cfde9fae92d0578
SHA1

fb043c2f8a5ed121711c67b94bab6d3ed1aa6ee9
SHA256

1641e5bcd136fb218cc662dca2a65631c6d11cf54c24d3a975b915ec78d8a8c0
SHA512

bdd0aac7010cea12bbf554d82a1b53a4c7b59f97721b1df0a55e29e37c3a7b6ae8f8cb46c772bd0793cbe6a81f8be805ad1c218a1783610b654d3ebe9184f3a1
SSDEEP

384:b4D72gB1aS3WbMNlSlyx+mC6VNwUKAEBIaeCimh0ayNjj:bm2gzaS3WbMNKbmHVNwM+IhQ+aw

Score

N/A

Malware Config

Signatures

Files

1641e5bcd136fb218cc662dca2a65631c6d11cf54c24d3a975b915ec78d8a8c0
.exe windows x86

a95e625a0ed337172fc41b5161a4892f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableA
ReadFile
CreateFileA
SuspendThread
GetFileSize
SetLastError
EnterCriticalSection
HeapSize
CloseHandle
GetModuleHandleA
GetCommandLineA
GetVersion
GetStdHandle
ExitProcess
SetFileAttributesW
DeleteAtom
DeleteFileW
GetFileAttributesA
SetLastError
GetCurrentDirectoryA
FindAtomW
SetEndOfFile
IsBadReadPtr
WaitForSingleObject
VirtualAlloc

cryptui

CryptUIWizExport
DllUnregisterServer
CryptUIDlgFreeCAContext
DllRegisterServer
LocalEnrollNoDS
CryptUIDlgViewContext
CryptUIWizBuildCTL
CryptUIDlgFreeCAContext
CryptUIDlgSelectStoreA
CryptUIDlgFreeCAContext
LocalEnroll
CryptUIWizDigitalSign
CryptUIWizImport

winrnr

NSPStartup
NSPStartup
NSPStartup
NSPStartup

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy