c912adaa324c7cae47ca36c0da13a11e129ce8a5682c31160b97130266cf1dcf | Triage

Submit
Reports

Overview

overview

8

Static

static

c912adaa32...cf.exe

windows7-x64

8

c912adaa32...cf.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c912adaa324c7cae47ca36c0da13a11e129ce8a5682c31160b97130266cf1dcf.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

c912adaa324c7cae47ca36c0da13a11e129ce8a5682c31160b97130266cf1dcf.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

c912adaa324c7cae47ca36c0da13a11e129ce8a5682c31160b97130266cf1dcf
Size

747KB
MD5

e12120cd79fc451e93636516ba8bf23f
SHA1

78c686265041f595195ca3ac988b0b8750c8a3c3
SHA256

c912adaa324c7cae47ca36c0da13a11e129ce8a5682c31160b97130266cf1dcf
SHA512

63c7547217e736ad252e4b7896db8bfade621c4d05826566f8bde9cd30c0f21a6deb03a9686e129dfbfc9160db00688d7ff0d2edb944663fad843e071f3e5723
SSDEEP

12288:g9wpCEXq6l9AZvfNhoX6vVc/eZ+P+dWnfmO5DKvQieTQN9nacyDm0lm6+/:KwYyHAtlY6dc/eZ+Gmp2vpwQN9wDTg/

Score

N/A

Malware Config

Signatures

Files

c912adaa324c7cae47ca36c0da13a11e129ce8a5682c31160b97130266cf1dcf
.exe windows x86

2efbd03d7e218685819585497a72a10f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
HeapSize
GetTickCount
FindClose
CreateFileA
CloseHandle
ResetEvent
GetFileAttributesA
ExitProcess
VirtualAllocEx
SetLastError
CreateMutexA
DeleteFileW
RemoveDirectoryA
GetCommandLineW
CancelIo
GetEnvironmentVariableW
OpenProcess
GetModuleHandleA
SetEvent
WriteConsoleW

user32

GetClassInfoA
FillRect
GetDC
GetCursorInfo
CallWindowProcW
GetDC
GetWindowLongA
GetDC
PeekMessageA
FindWindowA
DispatchMessageW
DispatchMessageW
GetSysColor

mciseq

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy