2a58d1668fab4a8187784f80fb0872d80ad95a4f7dc2b07f7204514c392c2e23 | Triage

Submit
Reports

Overview

overview

1

Static

static

2a58d1668f...23.exe

windows7-x64

1

2a58d1668f...23.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2a58d1668fab4a8187784f80fb0872d80ad95a4f7dc2b07f7204514c392c2e23.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2a58d1668fab4a8187784f80fb0872d80ad95a4f7dc2b07f7204514c392c2e23.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

2a58d1668fab4a8187784f80fb0872d80ad95a4f7dc2b07f7204514c392c2e23
Size

152KB
MD5

0e39b5eddebd0e7ef7492798ab919519
SHA1

346f8762a87da4192fa8e83df0f9262c78918481
SHA256

2a58d1668fab4a8187784f80fb0872d80ad95a4f7dc2b07f7204514c392c2e23
SHA512

227f306a96f5fec570338f628b289a5207b20b8f60c86b7e3339b8593f7a07fb02549f4c0d87ba9af863e160617e1ba08e358d0564ba79975f2ce1ebb968e9d1
SSDEEP

3072:51ajmXsQPXdLLuEquqZbcvW0OYDYWtsIK1dN9w6am8z4m:2jsDp2MOY0Wmb9w08zT

Score

N/A

Malware Config

Signatures

Files

2a58d1668fab4a8187784f80fb0872d80ad95a4f7dc2b07f7204514c392c2e23
.exe windows x86

e2bf619ac1a644e54088b68ce0b8b979

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
GetStartupInfoA
ExpandEnvironmentStringsA
OpenEventA
GetVersionExA
SearchPathA
GetSystemDirectoryA
GetCommandLineW
SetLocaleInfoW
InterlockedDecrement
GetCPInfo
LCMapStringW
GetModuleHandleA
SetEvent
lstrcatA
GetEnvironmentStrings

msvcrt

_ismbchira
_safe_fprem
sinh
__p__commode
exit
_except_handler3
fputwc
_cabs
_wspawnvp
_adj_fdivr_m32
_mktime64
_getdiskfree
__p__fmode
strcspn
_XcptFilter
_adjust_fdiv
fputc
_ismbcl0
__getmainargs
_ungetwch
_initterm
putwchar
_controlfp
__setusermatherr
_wspawnvpe
mktime
__set_app_type
time
_exit
_acmdln
memcpy

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy