d14080e8af653115b7d914a8646cae2adc4a2d18826a1305d810b8607160009b | Triage

Submit
Reports

Overview

overview

5

Static

static

d14080e8af...9b.exe

windows7-x64

5

d14080e8af...9b.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d14080e8af653115b7d914a8646cae2adc4a2d18826a1305d810b8607160009b.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d14080e8af653115b7d914a8646cae2adc4a2d18826a1305d810b8607160009b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d14080e8af653115b7d914a8646cae2adc4a2d18826a1305d810b8607160009b
Size

76KB
MD5

7a63d2ee66943f95d92a3f89810e2e96
SHA1

fee2fefe7c906669dfecc72ca3a16de449c32949
SHA256

d14080e8af653115b7d914a8646cae2adc4a2d18826a1305d810b8607160009b
SHA512

b58d31af669be100511f0d6e2a5043f32420882740e808b0a7cc6f9e4c6236ff110a4a01ec123d6527fdbd5fe6bddcd54e9ad37db40e268c8601a2c29cef8c75
SSDEEP

1536:bQRXvwMX3dTbSFLIqm1fHl6QVnBgx9Bk7IF:bQRvHRbSF8qm1EggxfkMF

Score

N/A

Malware Config

Signatures

Files

d14080e8af653115b7d914a8646cae2adc4a2d18826a1305d810b8607160009b
.exe windows x86

a5d379c70a86a25c9503889147880852

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FindResourceW
LoadLibraryA
CloseHandle
LeaveCriticalSection
lstrcatA
FormatMessageW
CreateMutexW
GetFileSize
GetModuleHandleA
ReadFile
IsBadWritePtr
CreatePipe
GetExitCodeProcess
GetLastError
GetStartupInfoW
InitializeCriticalSection
SetFileTime
HeapCreate
SetFileTime
SetFileTime
lstrcpyA

mstscax

DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

advapi32

ControlService
CreateServiceW
RegCreateKeyExW
RegDeleteValueA
CreateProcessAsUserA
IsTextUnicode
ClearEventLogW
RegQueryValueW
InitializeSid
IsValidSecurityDescriptor
RegEnumKeyA
IsValidSid
IsValidAcl

rasapi32

DwRasUninitialize

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ole
Size: 512B - Virtual size: 112B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy