12960a1a765c1f33e96fade8c6a06836145722475adccdca331ce28fe898f3de | Triage

Submit
Reports

Overview

overview

1

Static

static

12960a1a76...de.exe

windows7-x64

1

12960a1a76...de.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

12960a1a765c1f33e96fade8c6a06836145722475adccdca331ce28fe898f3de.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

12960a1a765c1f33e96fade8c6a06836145722475adccdca331ce28fe898f3de.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

12960a1a765c1f33e96fade8c6a06836145722475adccdca331ce28fe898f3de
Size

311KB
MD5

413d6b787272ac7eb1c30302f0cf274a
SHA1

f6dcae1547a32aa1042edb284d89ab7e5176f253
SHA256

12960a1a765c1f33e96fade8c6a06836145722475adccdca331ce28fe898f3de
SHA512

988ec95de1ed5dd74a16112de086583e5f66571ed1843f0741fda35da54f8c500594f2f4a55810647d7a4cf6cd053eee6eccae6d968450aa0a44c98510574249
SSDEEP

6144:efSby/0nKkjt6U917asZ1r0yVb+yB7vmK/bv+A8B5BddBxJ592v:XkgZfirYWA8bBnS

Score

N/A

Malware Config

Signatures

Files

12960a1a765c1f33e96fade8c6a06836145722475adccdca331ce28fe898f3de
.exe windows x86

14d7b8fa7b943fe7eb3132d50481dcdd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CLSIDFromString
CoTaskMemFree
StringFromCLSID
CoCreateInstance

gdi32

CreateFontIndirectW
GetLayout

oleaut32

VarBstrCmp
SysStringLen
GetErrorInfo
VariantInit
SysAllocStringLen
SysStringByteLen
SysAllocString
SysAllocStringByteLen
VariantClear
SysFreeString

kernel32

lstrlenW
IsDebuggerPresent
lstrlenA
DeleteCriticalSection
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
UnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
GetModuleHandleA
VirtualAlloc

user32

GetDC
DialogBoxIndirectParamW
CreateAcceleratorTableA
LoadMenuW
DestroyCursor
OffsetRect
LoadImageA
LoadImageW
wsprintfW
MonitorFromRect
EnumWindows
WinHelpA
ShowCursor
SetActiveWindow
FindWindowA
CharPrevA
CheckMenuItem
IsIconic
LoadIconA

corpol

CORLockDownProvider
DllUnregisterServer

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 375KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy