c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb | Triage

Submit
Reports

Overview

overview

Static

static

c6bd0d90ba...fb.exe

windows7-x64

c6bd0d90ba...fb.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb.exe

Resource

win7-20220718-en

sendsafe unregistered botnet spam

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb.exe

Resource

win10v2004-20220721-en

sendsafe unregistered botnet spam

windows10-2004-x64

3 signatures

150 seconds

General

Target

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb
Size

1.8MB
MD5

1801b59e8a960de092a3b8a875940a96
SHA1

59e7d03ba78a13c64eb482dbc347aa12184642e5
SHA256

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb
SHA512

4bf44d36251f6774cf71f8791b00cf60329cc32ff58fdcba78641605283d1b3831a264751d0742e28b2045c366778f0e9b27fafaa630d346574850e3a7f8b979
SSDEEP

24576:DlzsjyqHhMhwlqs5gkylSYUrs2f7iS4hfqBbSidr0Y/Qd/7ZHDifatxwOeR8uGIo:5a5HQ6qsKtUrswWSbxSiYZjhtxwsJQy

Score

N/A

Malware Config

Signatures

Files

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb
.exe windows x86

dbcc9cb5887c006f354b6aaeac6596fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
LocalFree
LocalAlloc
FormatMessageA
GetProcAddress
LoadLibraryA
GetModuleHandleA
Sleep

user32

CreatePopupMenu
GetProcessWindowStation
GetDC
LoadCursorFromFileA
LoadCursorA
GetSysColorBrush
OemKeyScan
EnumClipboardFormats
IsCharUpperW
GetAsyncKeyState
GetShellWindow
InSendMessage
CloseWindow
CharUpperW
GetWindowTextLengthA
GetForegroundWindow
VkKeyScanA
CloseClipboard
LoadIconA
GetWindowTextLengthW
GetTopWindow

gdi32

GetMapMode
DeleteEnhMetaFile
EndPage
SetMetaRgn
AbortDoc
GetColorSpace
GetEnhMetaFileW
GetTextCharset
AbortPath
CreateMetaFileW
CreateHalftonePalette

advapi32

RegOpenKeyA
RegQueryValueExA

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy