c82b9419721033129accc7dd9b986a6ef31514686cf3dddbbff85b46f046955a | Triage

Submit
Reports

Overview

overview

3

Static

static

c82b941972...5a.exe

windows7-x64

3

c82b941972...5a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c82b9419721033129accc7dd9b986a6ef31514686cf3dddbbff85b46f046955a.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

c82b9419721033129accc7dd9b986a6ef31514686cf3dddbbff85b46f046955a.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

c82b9419721033129accc7dd9b986a6ef31514686cf3dddbbff85b46f046955a
Size

23KB
MD5

8e27f75f5470954a24566cf56231573b
SHA1

e33e324882a4ad4aae7dee076a465f391d2a5c65
SHA256

c82b9419721033129accc7dd9b986a6ef31514686cf3dddbbff85b46f046955a
SHA512

3285e06eacd4a0a55c22a6a300742f4da32a6882768fd4513071d521bf7365d030cd39c5d03af6650f99879c445b064e9c0d1408f8d80a131f477a8efb0948f2
SSDEEP

384:uAlPLSRhGxm7Ul6J7YqOiOgpCNbVDGCtiJokYL:uwzSRwmUl3qogwtVybJoL

Score

N/A

Malware Config

Signatures

Files

c82b9419721033129accc7dd9b986a6ef31514686cf3dddbbff85b46f046955a
.exe windows x86

15c47a2276163218045b334a784096cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GlobalUnlock
GetCommandLineA
GetStartupInfoA
ExitProcess

ntdll

RtlNumberGenericTableElements
NtSetIntervalProfile
RtlQueryProcessBackTraceInformation
NtQueryQuotaInformationFile
ZwRegisterThreadTerminatePort
NtSetEvent
KiUserApcDispatcher
ZwAdjustPrivilegesToken
__iscsymf
RtlSetSecurityDescriptorRMControl
RtlTimeToElapsedTimeFields
RtlEqualUnicodeString
NtFsControlFile
RtlSetThreadPoolStartFunc
NtSetEvent
RtlValidSecurityDescriptor
strchr
NtQuerySystemTime
NtWaitForSingleObject
NtQueryInformationAtom

Sections

.text
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

weIJUNLi
Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy