d1ba2091c52a840e80a8563a3870cc2b1bad41c9d205e19d4e845ee4f774db80 | Triage

Submit
Reports

Overview

overview

8

Static

static

d1ba2091c5...80.exe

windows7-x64

8

d1ba2091c5...80.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d1ba2091c52a840e80a8563a3870cc2b1bad41c9d205e19d4e845ee4f774db80.exe

Resource

win7-20220901-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d1ba2091c52a840e80a8563a3870cc2b1bad41c9d205e19d4e845ee4f774db80.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

General

Target

d1ba2091c52a840e80a8563a3870cc2b1bad41c9d205e19d4e845ee4f774db80
Size

64KB
MD5

656c54728398b591a5cfac76d206e097
SHA1

13fb21e405360dba19a264b482276676bc51f49f
SHA256

d1ba2091c52a840e80a8563a3870cc2b1bad41c9d205e19d4e845ee4f774db80
SHA512

255c5417327c7e05ac7638323556bfa8763a660adad8120f6d43944154d100d1b7bd81e34c8fdc26c25b4ab8188023298f88238539acb6096406178cabcb0587
SSDEEP

768:bBwa3wLSqZkETG/j53wbU4oF4/EOi97emHGqn5DLDdQOn2skZI:r3wLSeK/FqU4/PHmHGq5DndQ0272

Score

N/A

Malware Config

Signatures

Files

d1ba2091c52a840e80a8563a3870cc2b1bad41c9d205e19d4e845ee4f774db80
.exe windows x86

8b15ec9ff90667b3a56685dcfefa3266

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
InterlockedExchange
HeapAlloc
GetProcessHeap
InterlockedExchangeAdd
GetModuleHandleA
ExitProcess
CreateThread
QueryPerformanceCounter
GetACP
InterlockedIncrement
GetCurrentProcess
InterlockedDecrement
GetCurrentThread
GetTickCount
GetProcAddress

user32

DispatchMessageA
TranslateMessage
GetMessageA
CreateWindowExA
RegisterClassExA
DestroyWindow
DefWindowProcA
FindWindowA
FindWindowExA
GetCapture
GetCursor
GetActiveWindow
GetDlgItem

gdi32

TextOutA
CreateSolidBrush
SetGraphicsMode
GetObjectType
GetBkColor
ResizePalette
UpdateColors

Exports

Exports

?jgdfgjfiogjfogC@@YAHHPADHHH@Z
?jgdfgjfiogjfogI@@YAHHPADHHH@Z
?jgdfgjfiogjfogK@@YAHHPADHHH@Z

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy