29857bb2553be2490a6844fd7ee224a7d34140607032b5aad14544b703fcc17b | Triage

Submit
Reports

Overview

overview

8

Static

static

29857bb255...7b.exe

windows7-x64

8

29857bb255...7b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

29857bb2553be2490a6844fd7ee224a7d34140607032b5aad14544b703fcc17b.exe

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

29857bb2553be2490a6844fd7ee224a7d34140607032b5aad14544b703fcc17b.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

29857bb2553be2490a6844fd7ee224a7d34140607032b5aad14544b703fcc17b
Size

22KB
MD5

086509f11ac052057823b613b3d3d0e4
SHA1

34b6d87f003c477a9075b6c0031116a4718cc283
SHA256

29857bb2553be2490a6844fd7ee224a7d34140607032b5aad14544b703fcc17b
SHA512

c8856630a7cae844206bb9ec1a28c4e77c8e6dc4a6e1c918c4ed7d16a795aa94fc22647bbc0fb897cd8626a4dfbb02df5c8b262cca74977470f78da7e2e4d25c
SSDEEP

384:Vf+vbp5yxMyBts+mC6VNwUK8EMPub1MQQQ:Vk56tNmHVNw3MPk1t

Score

N/A

Malware Config

Signatures

Files

29857bb2553be2490a6844fd7ee224a7d34140607032b5aad14544b703fcc17b
.exe windows x86

897a80d59f22cc2f43efc98a53fc9de2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
GetCommandLineA
FindClose
EnterCriticalSection
lstrlenA
SetLastError
ExitThread
HeapFree
IsBadReadPtr
GetModuleHandleA
SetLastError
WaitForMultipleObjects
GetDriveTypeA
CloseHandle
MapViewOfFile
ReadFile
GetFileTime
GetCurrentDirectoryW
GetFileAttributesA
HeapCreate
SetFileAttributesW
GetFileType
GetEnvironmentVariableW
GetCommandLineW
GlobalLock

uxtheme

GetThemeTextMetrics
GetThemeEnumValue
CloseThemeData
SetWindowTheme
GetThemeColor
DrawThemeBackground
CloseThemeData
DrawThemeEdge
GetThemeTextExtent
GetWindowTheme
OpenThemeData
GetThemeBool
IsThemeActive

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy