dece0b4964e4e0fb36bf957f448067eb47aa24d8c6a30dd7d6f17dff66591aa4 | Triage

Submit
Reports

Overview

overview

7

Static

static

dece0b4964...a4.exe

windows7-x64

7

dece0b4964...a4.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

dece0b4964e4e0fb36bf957f448067eb47aa24d8c6a30dd7d6f17dff66591aa4.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

dece0b4964e4e0fb36bf957f448067eb47aa24d8c6a30dd7d6f17dff66591aa4.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

dece0b4964e4e0fb36bf957f448067eb47aa24d8c6a30dd7d6f17dff66591aa4
Size

38KB
MD5

b450e215061c036b23e5d79e2439a3c9
SHA1

3c2139b217397d402e0ea7ed5d0af726466f966e
SHA256

dece0b4964e4e0fb36bf957f448067eb47aa24d8c6a30dd7d6f17dff66591aa4
SHA512

7305c2c68b8159620663a125af09bee6723f83b864bae41d391ed0fc8a9944b48b0a2a330da1d3a9bb401b25f5224a86970dccf1dcebd5118b5e9aafd5d2f648
SSDEEP

768:wOF+DokxB/3mthptR49GbR4xgpT1TX/PP5T:w/ckHfCK9i4e1P5T

Score

N/A

Malware Config

Signatures

Files

dece0b4964e4e0fb36bf957f448067eb47aa24d8c6a30dd7d6f17dff66591aa4
.exe windows x86

9a0669e6c808c1961a2f67459781fac6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

SetConsoleDisplayMode
ExitProcess
GetOEMCP
GetCurrentThreadId
GetThreadPriorityBoost
PulseEvent
GetACP
VirtualAlloc
GetCommandLineW
GetWindowsDirectoryA
SetTapeParameters
GetStartupInfoW
GetVersionExA
GetPriorityClass
GetStartupInfoA

advapi32

IsValidSecurityDescriptor
GetSecurityDescriptorOwner

Exports

Exports

Txxbqsp
WriteBfmyakw
Dwyuiku

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy