6af2072b4eba5666a7026c9cea0080c0e841d1073f3eeb8ed9c7a5c4a7fe8770 | Triage

Submit
Reports

Overview

overview

3

Static

static

6af2072b4e...70.exe

windows7-x64

1

6af2072b4e...70.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6af2072b4eba5666a7026c9cea0080c0e841d1073f3eeb8ed9c7a5c4a7fe8770.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

6af2072b4eba5666a7026c9cea0080c0e841d1073f3eeb8ed9c7a5c4a7fe8770.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6af2072b4eba5666a7026c9cea0080c0e841d1073f3eeb8ed9c7a5c4a7fe8770
Size

208KB
MD5

4aebd93039ebe35962808a9ed19fa260
SHA1

16a206bf01310fa35440ba63d3ddb160181f4fb6
SHA256

6af2072b4eba5666a7026c9cea0080c0e841d1073f3eeb8ed9c7a5c4a7fe8770
SHA512

060a0b3edd0147d738b4c53d5cfcd9beea19f8af28aad6851b8fdc8d6484f843d003f6a8c397f49ec7dde9fa053713807d7c89bbfa1030252245562327b7a0cf
SSDEEP

6144:74o4MfKW8KwqlsEnLv5Zbevoc1yq2Y9TFl/z+7:0JMfKKw5ELvv24MFg

Score

N/A

Malware Config

Signatures

Files

6af2072b4eba5666a7026c9cea0080c0e841d1073f3eeb8ed9c7a5c4a7fe8770
.exe windows x86

2b9ac87d5d2c63c781604bed9c380e3a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

scecli

SceAddToNameStatusList
SceAnalyzeSystem
SceBrowseDatabaseTable
SceAddToObjectList
SceCloseProfile
SceAppendSecurityProfileInfo

kernel32

HeapFree
GetVolumeInformationA
LoadLibraryW
GetCurrentProcess
WideCharToMultiByte
lstrcmpA
MultiByteToWideChar
GetProcessHeap
GetTickCount
GetLocaleInfoA
IsValidLocale
CreateFileA
SetUnhandledExceptionFilter
lstrcpyA
QueryPerformanceCounter
HeapAlloc
GetOEMCP
lstrlenA
GetCurrentProcessId
CloseHandle
GetSystemTimeAsFileTime
FindResourceA
SystemTimeToFileTime
LockResource
SetLastError
GetLocalTime

schannel

QuerySecurityPackageInfoW
InitializeSecurityContextW
QueryContextAttributesW
QueryContextAttributesA
QuerySecurityPackageInfoA

advapi32

RegCloseKey
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy