da7e95966a79776f971245277924920918043ed191f5cb39def396ce2a2639a7 | Triage

Submit
Reports

Overview

overview

3

Static

static

da7e95966a...a7.exe

windows7-x64

3

da7e95966a...a7.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

da7e95966a79776f971245277924920918043ed191f5cb39def396ce2a2639a7.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

da7e95966a79776f971245277924920918043ed191f5cb39def396ce2a2639a7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

da7e95966a79776f971245277924920918043ed191f5cb39def396ce2a2639a7
Size

310KB
MD5

e1931570f76ad54709c430834e89a0d5
SHA1

c306052903d562066e474b8062767a5dda133cf6
SHA256

da7e95966a79776f971245277924920918043ed191f5cb39def396ce2a2639a7
SHA512

2193b8ba17b4e40123244cf8afdca62b24f4d5a3fdfdb5a8ca5e37fcc4e09526d74086aabd629d195ad3164e7827ed7d4c8f6657dac08c2baa2d3387945b1748
SSDEEP

6144:IqPBQ5ieILmsCDplFM+mBdBagR+PPybcDdQ9QnGv4x1pqlP2KeQ1PKLgNFSuAhkT:Iq52hsCDp3gdBagR+PPygZQSGQx1pqlQ

Score

N/A

Malware Config

Signatures

Files

da7e95966a79776f971245277924920918043ed191f5cb39def396ce2a2639a7
.exe windows x86

483185fb1d4b2722a6d0adb7d35a191b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

mpr

WNetOpenEnumA

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

shell32

Shell_NotifyIconA

wininet

InternetReadFile

wsock32

WSACleanup

winmm

waveOutWrite

avicap32

capCreateCaptureWindowA

msacm32

acmFormatChooseA

ws2_32

WSAIoctl

Sections

CODE
Size: 293KB - Virtual size: 824KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zhywx
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wkt0
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy