f9b49fa1488e37e1e5f2a24dbe97e4c1bce72627edeb49ce07005ee3ba2b6991 | Triage

Submit
Reports

Overview

overview

8

Static

static

f9b49fa148...91.exe

windows7-x64

8

f9b49fa148...91.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f9b49fa1488e37e1e5f2a24dbe97e4c1bce72627edeb49ce07005ee3ba2b6991.exe

Resource

win7-20221111-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

f9b49fa1488e37e1e5f2a24dbe97e4c1bce72627edeb49ce07005ee3ba2b6991.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

13 signatures

150 seconds

General

Target

f9b49fa1488e37e1e5f2a24dbe97e4c1bce72627edeb49ce07005ee3ba2b6991
Size

671KB
MD5

0400914c0781eae0908586c6b8b1591c
SHA1

e4f88544db4f0ff6315069cecec5190777f768f7
SHA256

f9b49fa1488e37e1e5f2a24dbe97e4c1bce72627edeb49ce07005ee3ba2b6991
SHA512

f3f6f101001710c183124aabf7cabe47be7428ba6491990e67e914b7dbe2d208d74098d886b152a9cba6a8c00eaf3e0fe267e4d289014f80dbb5ad9479bd343a
SSDEEP

12288:LL7+j/42X2SzhMy+TL4+BxGDr0dDB3OaccSv+jefTby4NpB:LHK/Pnz5+v50DAdB1BSAefT+u

Score

N/A

Malware Config

Signatures

Files

f9b49fa1488e37e1e5f2a24dbe97e4c1bce72627edeb49ce07005ee3ba2b6991
.exe windows x86

f9cc5314b5281114c200c0cdc9844026

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

oleaut32

SysFreeString

advapi32

RegSetValueExA

user32

GetKeyboardType

Sections

CODE
Size: 25KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 633KB - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MaskPE
Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xiaohui
Size: 28B - Virtual size: 28B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy