f442c9bc309e10a7fc4a8278788049680fe08faee028a4d02fcc1ec23edb9449 | Triage

Submit
Reports

Overview

overview

8

Static

static

f442c9bc30...49.exe

windows7-x64

8

f442c9bc30...49.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f442c9bc309e10a7fc4a8278788049680fe08faee028a4d02fcc1ec23edb9449.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

f442c9bc309e10a7fc4a8278788049680fe08faee028a4d02fcc1ec23edb9449.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

f442c9bc309e10a7fc4a8278788049680fe08faee028a4d02fcc1ec23edb9449
Size

330KB
MD5

7bf3b33434ecb3c59daab3feff1d8c10
SHA1

b62c190854c35fb5c5770cefbd7c5f9a828a2ebc
SHA256

f442c9bc309e10a7fc4a8278788049680fe08faee028a4d02fcc1ec23edb9449
SHA512

eb5ba1884a3a7e845da93458b99ec7c865b055a8470e8611627d4ae6e219f6dff51200710afbab94096011e287dc476f6a318b15bdeb705e61f87ceb118750f1
SSDEEP

6144:EtfLHnviIkzIsHFd1ZN6a4p8EuOHcjEoeuNzlE5EjuMcd9YX+zl1JzV1LTGNCj1A:EtTHvEzI+b1aa4p7uPjEhu3EckdSQ1JS

Score

N/A

Malware Config

Signatures

Files

f442c9bc309e10a7fc4a8278788049680fe08faee028a4d02fcc1ec23edb9449
.exe windows x86

4c541c7ae5199d77fdd585279ba50c80

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WaitForSingleObject
GetProfileIntA
GetStdHandle
lstrlenA
CompareFileTime
AddAtomA
InterlockedExchange
SuspendThread
GetVersion
HeapCreate
HeapReAlloc
LoadLibraryExA
GetTickCount
VirtualProtect
GetSystemDefaultLangID
GetCommandLineA
GlobalUnlock
GetModuleHandleA
GetConsoleCP
WaitForMultipleObjects

user32

FindWindowA
CreateCaret
DispatchMessageA
EqualRect
InsertMenuA
GetKeyState
CopyRect
GetDlgItem
DestroyMenu
EnableScrollBar
SetPropA
SubtractRect
DialogBoxParamA
ModifyMenuA
CreateCursor
MessageBoxA
PostMessageA
IsDialogMessage
SetWindowPos
TranslateMessage
GetWindowTextA
DrawCaption
GetKeyboardLayout
GetMenuStringA
PaintDesktop

netapi32

DsGetDcOpenA
DsGetDcNextA
DsRoleFreeMemory
DsRoleCancel
DsGetDcNameA

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy