f548a8498bf474456d2ef49d67058127f90b843eb50c3d213998a2bf43d4971c | Triage

Submit
Reports

Overview

overview

3

Static

static

f548a8498b...1c.exe

windows7-x64

3

f548a8498b...1c.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f548a8498bf474456d2ef49d67058127f90b843eb50c3d213998a2bf43d4971c.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f548a8498bf474456d2ef49d67058127f90b843eb50c3d213998a2bf43d4971c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f548a8498bf474456d2ef49d67058127f90b843eb50c3d213998a2bf43d4971c
Size

36KB
MD5

bb78aee3ae348ebe6adc977d595edf30
SHA1

1829e6d617a06338144fe0bf9d4385d919bdb340
SHA256

f548a8498bf474456d2ef49d67058127f90b843eb50c3d213998a2bf43d4971c
SHA512

90e916318682b272ae16492f7b554ae5f40992cde466535280e7de50faca8e36b6446f38c0046f0f3a666f56f24eca51eae26c67f358477cd31637126571644a
SSDEEP

384:n44S1Fal5dP8Pmi5llZscykSg3TkZcGXE/k7+/SdXwAFzkwJnmFqm3NEEo/cJ:npS1cWP7Zz/ya/oX5zkwJnWqEEPE

Score

N/A

Malware Config

Signatures

Files

f548a8498bf474456d2ef49d67058127f90b843eb50c3d213998a2bf43d4971c
.exe windows x86

be0816555c2802a589c8fe4cbfef3966

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

GetUserNameA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

kernel32

AddAtomA
CopyFileA
ExitProcess
FindAtomA
GetAtomNameA
GetComputerNameA
GetModuleFileNameA
GetSystemDirectoryA
GetVersion
SetUnhandledExceptionFilter
Sleep
WinExec

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_beginthread
_cexit
_endthread
_iob
_onexit
_setmode
abort
atexit
atoi
fflush
fprintf
free
malloc
memset
printf
puts
rand
signal
sprintf
srand
strcat
strchr
strcpy
strlen
strncpy
system
time

ws2_32

WSACleanup
WSAGetLastError
WSAStartup
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyname
inet_ntoa
recv
send
socket

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy