27a94a72b92ac8545455b016c3aef15ecf372e9f9a1ef75eb26e67128e47c8e7 | Triage

Submit
Reports

Overview

overview

Static

static

27a94a72b9...e7.exe

windows7-x64

27a94a72b9...e7.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

27a94a72b92ac8545455b016c3aef15ecf372e9f9a1ef75eb26e67128e47c8e7.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

27a94a72b92ac8545455b016c3aef15ecf372e9f9a1ef75eb26e67128e47c8e7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

27a94a72b92ac8545455b016c3aef15ecf372e9f9a1ef75eb26e67128e47c8e7
Size

198KB
MD5

6ea0e611a97f4b6722db2fe088a4ebae
SHA1

41821731226868d119a7d776bfb98ed647c993b7
SHA256

27a94a72b92ac8545455b016c3aef15ecf372e9f9a1ef75eb26e67128e47c8e7
SHA512

d054dee4e40254809483372d34d9db08ce0d373ba11a2101f1c693939a71993cf196526ba040d18665c19f03ba8e0065be91c64481f112a7552e3be7a7ecdfb5
SSDEEP

6144:7wyqvWWd8tMv4cyfHbVF3B569E8Zn6syK6mGkpj:cyqnwMQcOHbfn69EKp7pj

Score

N/A

Malware Config

Signatures

Files

27a94a72b92ac8545455b016c3aef15ecf372e9f9a1ef75eb26e67128e47c8e7
.exe windows x86

817d80164229c03c8b1a0070c4492e2e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
HeapSize
SetEndOfFile
EnterCriticalSection
CreateFileA
GetStdHandle
ExitProcess
DeleteAtom
GetCommandLineA
GetEnvironmentVariableA
DeleteFileA
VirtualAlloc
CloseHandle
FindAtomW
ResumeThread
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetVersion
WaitForSingleObject
SetLastError
GetModuleHandleA
GetCurrentDirectoryA
SetFileAttributesA
SetLastError

shell32

StrChrA
ShellAboutA
DragAcceptFiles
SHGetMalloc
ExtractIconA
DllUnregisterServer
DragQueryFileA
DuplicateIcon
ShellMessageBoxA
SHFree
SHGetSettings
SHFree
DragFinish

uniplat

UmPlatformInitialize
UmPlatformInitialize
UmPlatformInitialize
UmPlatformInitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy