b721a541097281364a80c6c12df1c8537358f5d3d0cd4c469bd966b90a598eb0 | Triage

Submit
Reports

Overview

overview

8

Static

static

b721a54109...b0.exe

windows7-x64

8

b721a54109...b0.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b721a541097281364a80c6c12df1c8537358f5d3d0cd4c469bd966b90a598eb0.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

b721a541097281364a80c6c12df1c8537358f5d3d0cd4c469bd966b90a598eb0.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

b721a541097281364a80c6c12df1c8537358f5d3d0cd4c469bd966b90a598eb0
Size

204KB
MD5

098426634b62f0c336a9d955f442d7b0
SHA1

d2a3570d1d6eaae3617e49d4cd08b2655eb82243
SHA256

b721a541097281364a80c6c12df1c8537358f5d3d0cd4c469bd966b90a598eb0
SHA512

cf31912ff9bf2a0ccc2579b0cd6c2d064597d70bb42c347d8f1bfa63e2b4b406c961e624f2eae031ad904ddd6b9d765b4124265b9c2203e719183c8b5e1589a7
SSDEEP

3072:TvMgdS7msl7npNGCwh2lJYPJlbiwrEpDQNaPDVRdLeegBlunvgxToeaizVUeHyH:wmS7yXgYhAFc6DLxeesccBcMy

Score

N/A

Malware Config

Signatures

Files

b721a541097281364a80c6c12df1c8537358f5d3d0cd4c469bd966b90a598eb0
.exe windows x86

0d7cd3c8980940de56bb40ba4faa87aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GlobalUnlock
WaitForMultipleObjects
CloseHandle
CompareFileTime
GetSystemDefaultLangID
VirtualProtect
InterlockedExchange
GetConsoleDisplayMode
HeapReAlloc
HeapCreate
SuspendThread
LocalSize
GetVersion
WaitForSingleObject
GetAtomNameA
lstrlenA
GetConsoleCP
GetCommandLineA
GetModuleHandleA
LoadLibraryExA

gdi32

Ellipse
CreatePalette
GetFontData
DeleteObject
GetTextColor
BeginPath
GetRgnBox
GetStringBitmapA
DeleteDC
GetMetaRgn
GetMetaFileA
EndPath
AbortPath
CreateICA
FloodFill
Escape
CreateFontA
EngLineTo
EqualRgn

rastapi

DeviceConnect
PortClose
AddPorts
DeviceDone
DeviceListen

dhcpsapi

DhcpAddServer

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy