79f8b2f9790965f2d26826baf6cb0c27205135b299cd098beb0a7d3a38b14b12 | Triage

Submit
Reports

Overview

overview

1

Static

static

79f8b2f979...12.exe

windows7-x64

1

79f8b2f979...12.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

79f8b2f9790965f2d26826baf6cb0c27205135b299cd098beb0a7d3a38b14b12.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

79f8b2f9790965f2d26826baf6cb0c27205135b299cd098beb0a7d3a38b14b12.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

79f8b2f9790965f2d26826baf6cb0c27205135b299cd098beb0a7d3a38b14b12
Size

7KB
MD5

fa1812b2a0a3a4aae99c6e37f43466ba
SHA1

14927f2668327bff86bdb78055d62552b988c489
SHA256

79f8b2f9790965f2d26826baf6cb0c27205135b299cd098beb0a7d3a38b14b12
SHA512

21bfe4791f4df25d9ead7c8feb259bcd81ec7edd42aca7a6ad5f4228998fe13d764598ab6de4eb33e1cfe6c79495b3dbb8a807c02e6eadeaa9c0e15d1de7da95
SSDEEP

96:/KB7vB/hj6GlgWljG6glP401KhP9TD7JcNdVTFF2HteIldgf5HteIgK9+vyoP:Y75/heagYjGdS0EzTDVsdZGLupGK+y

Score

N/A

Malware Config

Signatures

Files

79f8b2f9790965f2d26826baf6cb0c27205135b299cd098beb0a7d3a38b14b12
.exe windows x86

0fb9e535d4eed2712739d8b4c8707a6e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
GetLastError
Sleep
WideCharToMultiByte
HeapAlloc
FormatMessageA
LoadLibraryA
GetProcAddress
FreeLibrary
LocalFree
SetEvent
GetProcessHeap
HeapFree
ReadFile
ReadFileEx
WriteFile
SetLastError
WriteFileEx
WaitForSingleObjectEx
ResetEvent
CreateEventA
CloseHandle

wsock32

closesocket
WSAStartup
htons
getservbyname
WSASetLastError
WSAGetLastError
ioctlsocket
gethostbyname
socket
connect

crtdll

fprintf
strstr
strtoul
wcstoul
printf
strtok
fflush
exit
_amsg_exit
__GetMainArgs
strchr
_iob
_strdup
_stricmp

user32

CharToOemA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 476B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy