f4e34dc781ab6e968e616ca800324c317158736b3f7f27435a98bef8e602d12a | Triage

Submit
Reports

Overview

overview

4

Static

static

f4e34dc781...2a.exe

windows7-x64

4

f4e34dc781...2a.exe

windows10-2004-x64

4

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f4e34dc781ab6e968e616ca800324c317158736b3f7f27435a98bef8e602d12a.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f4e34dc781ab6e968e616ca800324c317158736b3f7f27435a98bef8e602d12a.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

f4e34dc781ab6e968e616ca800324c317158736b3f7f27435a98bef8e602d12a
Size

18KB
MD5

bb7537106ea2d0c57e263151e57668ac
SHA1

be1424cf75f438c6d80240206de17fd93524067f
SHA256

f4e34dc781ab6e968e616ca800324c317158736b3f7f27435a98bef8e602d12a
SHA512

56c333e053b52969afdb8d0441bc68c405919e06794152e60b79f0f025e730bcaa7d0b664a6039ddcd0bcbd5569693c8c27cf6fb42f4a45449fee2f2e2096711
SSDEEP

384:T0mKfPZMzJ06G+/ApDfKuSYVSsg7L6hRzDmpK:QV1dViyhR

Score

N/A

Malware Config

Signatures

Files

f4e34dc781ab6e968e616ca800324c317158736b3f7f27435a98bef8e602d12a
.exe windows x86

51ee23e3b52b088cdbd7e737e75c6846

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
CreateThread
ExitProcess
FindAtomA
GetAtomNameA
GetSystemTime
SetUnhandledExceptionFilter
Sleep

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
_vsnprintf
abort
atexit
fclose
fflush
fgetc
fopen
fprintf
fputc
fputs
free
fseek
ftell
fwrite
getenv
malloc
memcpy
memset
puts
rand
signal
sprintf
srand
time

user32

CloseClipboard
GetAsyncKeyState
GetClipboardData
GetForegroundWindow
GetKeyState
GetWindowTextA
OpenClipboard

ws2_32

WSAStartup
closesocket
connect
gethostbyname
gethostname
htons
inet_addr
inet_ntoa
recv
send
socket

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 240B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy