f37fb38d8b307107c609caeed14bf6b9c4813f395621ba71629c4ae3affa2cfa | Triage

Submit
Reports

Overview

overview

Static

static

f37fb38d8b...fa.exe

windows7-x64

f37fb38d8b...fa.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f37fb38d8b307107c609caeed14bf6b9c4813f395621ba71629c4ae3affa2cfa.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

f37fb38d8b307107c609caeed14bf6b9c4813f395621ba71629c4ae3affa2cfa.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

f37fb38d8b307107c609caeed14bf6b9c4813f395621ba71629c4ae3affa2cfa
Size

177KB
MD5

a12c2cede3264d5d1a87bf7ea79c3629
SHA1

044ae67bf7b03cf11f9c4cf813f1e2c8b1256648
SHA256

f37fb38d8b307107c609caeed14bf6b9c4813f395621ba71629c4ae3affa2cfa
SHA512

1834da31c8530468576427ebfaf90815afd7c8c9a1ebdfb62d30178b151e644727d48d28a6a32758ab68ea0828402d5db71ed67101c0ae41c1128917cb5b7297
SSDEEP

3072:k6I8KUlZ6XBhSduk0jCS78KXZjPaeddfWKAJv+3Q/TpQDBhRJ:VQh7k0JJjBZor9QVJ

Score

N/A

Malware Config

Signatures

Files

f37fb38d8b307107c609caeed14bf6b9c4813f395621ba71629c4ae3affa2cfa
.exe windows x86

1bc9f8d2cd7dd8bf0266d981eaf18732

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

DeleteObject
SelectObject
StretchBlt
DeleteDC
Rectangle

user32

CharLowerW
CharNextW
GetKeyState
GetTopWindow
wsprintfA
wsprintfW
CharUpperW
MessageBoxW

kernel32

GetVersionExA
SetEnvironmentVariableA
CompareStringW
CompareStringA
lstrlenW
HeapAlloc
GetProcessHeap
HeapReAlloc
HeapFree
IsValidLocale
GlobalGetAtomNameW
GlobalDeleteAtom
SystemTimeToTzSpecificLocalTime
RaiseException
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
GetStringTypeExW
MulDiv
Sleep
GetTickCount
GetCurrentThreadId
LocalAlloc
LocalFree
GetLastError

shell32

ord201
SHGetFolderPathA

oleaut32

CreateErrorInfo
SafeArrayAllocDescriptorEx
SafeArrayGetLBound
SysReAllocStringLen
OleLoadPicture

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy