91f1032668d07816cb26e663e2a4ffa876643e412b1b0420a8c070d80f888744 | Triage

Submit
Reports

Overview

overview

8

Static

static

91f1032668...44.exe

windows7-x64

8

91f1032668...44.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

91f1032668d07816cb26e663e2a4ffa876643e412b1b0420a8c070d80f888744.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

91f1032668d07816cb26e663e2a4ffa876643e412b1b0420a8c070d80f888744.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

9 signatures

150 seconds

General

Target

91f1032668d07816cb26e663e2a4ffa876643e412b1b0420a8c070d80f888744
Size

321KB
MD5

b0ef1c1046ae055bbe2c33a3910ba40c
SHA1

0cdc2c42c8725378f031c9bf8b1a3ea5a6cc5eda
SHA256

91f1032668d07816cb26e663e2a4ffa876643e412b1b0420a8c070d80f888744
SHA512

ba022379ed34ea91b069ca63ca7ab3b9ca98e06153cf84241e628dd03b1cbb3faf36a7ede1842d5e2fd02b5ba6adb40d26503574dc9382131b2ec9cd37c08be5
SSDEEP

6144:bdVhzctJoYKS6/TJ80uIe1NF/5dVI4vYXbuleeehcJY1CZ/Hko8ZjJjsXPpPkYfE:bdctJM/TJXe1RLYrutehGZ/v6JAXhMYs

Score

N/A

Malware Config

Signatures

Files

91f1032668d07816cb26e663e2a4ffa876643e412b1b0420a8c070d80f888744
.exe windows x86

43eabdaa8eef8f7688b6867a5530050e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
CloseHandle
RaiseException
GlobalFree
VirtualProtect
SetConsoleOutputCP
Sleep
GetStdHandle
GetLastError
FoldStringA
HeapCreate
SetErrorMode
GlobalUnlock
GetDriveTypeA
LockResource
GetACP
GetLocaleInfoA
GlobalAddAtomA
LoadLibraryExA
GlobalDeleteAtom
InterlockedExchange

user32

ClipCursor
GetWindowTextA
BeginPaint
IsIconic
GetParent
GetClassNameA
ShowWindow
SetForegroundWindow
ValidateRect
GetWindow
GetMenuItemInfoA
DrawTextA
ReleaseDC
CharToOemBuffA
GetFocus
DrawEdge
EndPaint
GetActiveWindow
GetCursorPos

version

GetFileVersionInfoA
VerQueryValueA
VerInstallFileA
GetFileVersionInfoSizeA
VerFindFileA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy