bef979b270b6f29f35b9652de18e71dd7e7c9b4fb7112b60667ea54f09e83e9d | Triage

Submit
Reports

Overview

overview

1

Static

static

bef979b270...9d.exe

windows7-x64

1

bef979b270...9d.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bef979b270b6f29f35b9652de18e71dd7e7c9b4fb7112b60667ea54f09e83e9d.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

bef979b270b6f29f35b9652de18e71dd7e7c9b4fb7112b60667ea54f09e83e9d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

bef979b270b6f29f35b9652de18e71dd7e7c9b4fb7112b60667ea54f09e83e9d
Size

65KB
MD5

3153543ffc0c2d900df865b84186bb18
SHA1

4837bee444c665a8d5c53c088d41cb68c3fb6491
SHA256

bef979b270b6f29f35b9652de18e71dd7e7c9b4fb7112b60667ea54f09e83e9d
SHA512

acf9b228b96bd4ff151cc10a07a956abb6d8b960256d36670c06a3993581d8cd051d1075d9278bdc28546ae38ddefb53d8137e1f2ba2c286c4f27d8ad3e4f8ae
SSDEEP

1536:dhj6sgpwIhvLBxlrZmzdudaDNZpB7iri58470/C3iqRp9kL/WMDm190:dxfI7w8AhZjuri+470/Cyc9Q/LDmA

Score

N/A

Malware Config

Signatures

Files

bef979b270b6f29f35b9652de18e71dd7e7c9b4fb7112b60667ea54f09e83e9d
.exe windows x86

ba7c0f49f0887a6704637b33aadfc4fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
FindFirstFileW
lstrlenW
GetTimeZoneInformation
InitializeCriticalSection
VirtualProtect
CreateFileA
lstrlenA
ReleaseMutex
OpenMutexW
lstrcmpiA
GetSystemTime
lstrcpyA
GetFileAttributesA
SetFileTime
SetFilePointer
EnterCriticalSection
MulDiv
WideCharToMultiByte
HeapAlloc
HeapFree
Sleep

advapi32

CryptHashData
CryptAcquireContextW
CryptCreateHash
RegEnumKeyExA
DuplicateTokenEx
RegDeleteValueA
CryptReleaseContext
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
GetUserNameW

user32

GetWindowThreadProcessId
LoadCursorA
PeekMessageA
GetDlgItem
GetMessageA
DrawIcon
GetCursorPos
GetIconInfo
ToUnicode
GetClassNameA
GetKeyState
EndDialog
MsgWaitForMultipleObjects
GetWindowLongA
GetWindowTextA
OpenWindowStationA
SendMessageA
CloseWindowStation
GetClipboardData
GetKeyboardState
ExitWindowsEx

shlwapi

SHDeleteKeyA
wvnsprintfW
PathFindFileNameW
PathRemoveFileSpecW
PathCombineW
StrCmpNIA
StrStrW
PathMatchSpecW
StrCmpNIW
wnsprintfA

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy