d254f859236c57d90f9bd5818c611ef5e7ac93cc206bc8d04555a2ac25797ae6 | Triage

Submit
Reports

Overview

overview

1

Static

static

d254f85923...e6.exe

windows7-x64

d254f85923...e6.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d254f859236c57d90f9bd5818c611ef5e7ac93cc206bc8d04555a2ac25797ae6.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d254f859236c57d90f9bd5818c611ef5e7ac93cc206bc8d04555a2ac25797ae6.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d254f859236c57d90f9bd5818c611ef5e7ac93cc206bc8d04555a2ac25797ae6
Size

170KB
MD5

c86f0dba82293c03a51a22f31f574cae
SHA1

b4a178f3ece8bcf091749afeea19d8a99d22816d
SHA256

d254f859236c57d90f9bd5818c611ef5e7ac93cc206bc8d04555a2ac25797ae6
SHA512

a092f44fe4ca31215b02f17213a74bd7faa90dbd4a869d9e4c4a16ab5a277ba9cca873d89f2efe7235b186f31e042b66bcf461936d3f13bf476f95006ef80c5c
SSDEEP

3072:4WydfKRvlh1YzH8Et73VO5rVKaK57TGitb446JCqLqIsqozTVx:QERv/0JONVtuE1Zsq2

Score

N/A

Malware Config

Signatures

Files

d254f859236c57d90f9bd5818c611ef5e7ac93cc206bc8d04555a2ac25797ae6
.exe windows x86

ee8f15a8ca24548ea050ada5d8bb9cd9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetComputerNameExW
SearchPathW
WaitForSingleObjectEx
IsValidLocale
GetCurrentThread
GetFullPathNameW

shlwapi

PathUnmakeSystemFolderA

advapi32

RegQueryValueExA
RegQueryValueExW
RegReplaceKeyA

user32

GetTopWindow
KillTimer
ShowCursor
IsWindow
GetClientRect
OffsetRect
SetCursorPos
GetActiveWindow
MessageBeep
GetFocus

ntdll

RtlCompareMemory

Exports

Exports

?ValidateDataInFile@@YGKXZ

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy