79a9640a5963508a4ec0ee377e4279a9fefcb6ea9ffc32072944c8dee039d26b | Triage

Submit
Reports

Overview

overview

8

Static

static

79a9640a59...6b.exe

windows7-x64

8

79a9640a59...6b.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

79a9640a5963508a4ec0ee377e4279a9fefcb6ea9ffc32072944c8dee039d26b.exe

Resource

win7-20220901-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

79a9640a5963508a4ec0ee377e4279a9fefcb6ea9ffc32072944c8dee039d26b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

79a9640a5963508a4ec0ee377e4279a9fefcb6ea9ffc32072944c8dee039d26b
Size

303KB
MD5

0670f593b0bb7eede65397c7cf0562c6
SHA1

ad6a176cc9d3b860f9784f627c0a96f856b9b394
SHA256

79a9640a5963508a4ec0ee377e4279a9fefcb6ea9ffc32072944c8dee039d26b
SHA512

d15c86c6968f7f6d4c18cd840729c3642edf56df846cfaf1b2334e515a9191d732cf1cd5a062314cc6a8f98c44ebed9e8747dc051ffc717236c78e65fa070573
SSDEEP

6144:zxDPnPsHhCeTcT3qA3H1+L0UCxx5Mr38U6TgRoRw4MziGybX2czYcCW9U1:zJPnPiT83qeHsL+75Mb8UrdNzTylzYc2

Score

N/A

Malware Config

Signatures

Files

79a9640a5963508a4ec0ee377e4279a9fefcb6ea9ffc32072944c8dee039d26b
.exe windows x86

7c5d4420647f5cd290a0fbe335aecdfd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapCreate
IsBadWritePtr
lstrcatA
InterlockedExchange
CloseHandle
ReadFile
GetStringTypeA
GetStartupInfoW
LoadLibraryA
SetConsoleTitleA
GetLastError
HeapSize
GetFileSize
GetExitCodeProcess
GetModuleHandleA
CreateEventA
lstrcpyA
LeaveCriticalSection
SetFileTime
SetFileTime
SetFileTime

mstscax

DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

shell32

ExtractIconA
StrChrA
SHFree
DragQueryFileA
SHGetSettings
DllUnregisterServer
SHGetDiskFreeSpaceA
ShellAboutA
DragFinish
ShellMessageBoxW
DragAcceptFiles
SHGetMalloc
DuplicateIcon

rasapi32

DwRasUninitialize

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ole
Size: 512B - Virtual size: 112B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy