f530959c4fd88eccec38ca3066d688350bce2ef7b640171f9185b9b6fde9be11 | Triage

Submit
Reports

Overview

overview

7

Static

static

f530959c4f...11.exe

windows7-x64

3

f530959c4f...11.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f530959c4fd88eccec38ca3066d688350bce2ef7b640171f9185b9b6fde9be11.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

f530959c4fd88eccec38ca3066d688350bce2ef7b640171f9185b9b6fde9be11.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

f530959c4fd88eccec38ca3066d688350bce2ef7b640171f9185b9b6fde9be11
Size

24KB
MD5

181483672a375efa199ea554d5c2be1c
SHA1

ed87373abb02ea384ad56007dbb980e98e7777ab
SHA256

f530959c4fd88eccec38ca3066d688350bce2ef7b640171f9185b9b6fde9be11
SHA512

cd50b031cf0f9ff119836d74b9eb9e1326c23c08cc2d7acadcf7bca988765ab6e74583c2589d80daf68af29fbaeff446b85334fb600fbf6ae45b4ca95f3032eb
SSDEEP

192:uVsDB0fA8D4l8Q/ZSCwNrQXcCEwD9iRnY8PdmZBdZDO8kMF9MUMAIcfblptsywoP:IdLQPw5dwDD6dmlgw36ywoepNMwo

Score

N/A

Malware Config

Signatures

Files

f530959c4fd88eccec38ca3066d688350bce2ef7b640171f9185b9b6fde9be11
.exe windows x86

18e2604bcaa3b6ed5be395ac5d3f3c24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
TerminateProcess
OpenProcess
CreateFileA
WinExec
GetModuleFileNameA
GlobalAlloc
SetFilePointer
ReadFile
CloseHandle
WriteFile
GetCurrentProcessId
GetTempPathA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetCommandLineA
GetVersion
ExitProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetStringTypeW

advapi32

RegDeleteKeyA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyExA

shell32

ShellExecuteA

psapi

EnumProcessModules
GetModuleBaseNameA
EnumProcesses

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy