d6496686f2c7e58f4802d1a995cf8a5f1ca0d7f1265c4c6961aadb18b0bd04b0 | Triage

Submit
Reports

Overview

overview

Static

static

d6496686f2...b0.exe

windows7-x64

d6496686f2...b0.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d6496686f2c7e58f4802d1a995cf8a5f1ca0d7f1265c4c6961aadb18b0bd04b0.exe

Resource

win7-20220901-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

d6496686f2c7e58f4802d1a995cf8a5f1ca0d7f1265c4c6961aadb18b0bd04b0.exe

Resource

win10v2004-20220812-en

evasion persistence spyware stealer trojan

windows10-2004-x64

17 signatures

150 seconds

General

Target

d6496686f2c7e58f4802d1a995cf8a5f1ca0d7f1265c4c6961aadb18b0bd04b0
Size

488KB
MD5

6b149776bf9fb9afc78a09ad66148c00
SHA1

94c2630d664e2a6e1f3578eff48f883c335d5f8b
SHA256

d6496686f2c7e58f4802d1a995cf8a5f1ca0d7f1265c4c6961aadb18b0bd04b0
SHA512

773d22abdfb34c1f0bfd470a2a4c14a4024f38cbc8ca018d759d6587e7334af863fa9e01a5d444493d754fd60ca59a5fc2d81b216015bbc0b00cfc85555a6f45
SSDEEP

12288:1Kfoz8SLYPeCKpJV7RTxTRSArf4u+cDV/:1Ku8ScPeZpJVTTRvrwu+cx/

Score

N/A

Malware Config

Signatures

Files

d6496686f2c7e58f4802d1a995cf8a5f1ca0d7f1265c4c6961aadb18b0bd04b0
.exe windows x86

c038255fd5cc0e1794d2c1f01fe20d11

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyW

ntdll

RtlTraceDatabaseAdd

user32

GetOpenClipboardWindow
GetInputDesktop

Sections

.text
Size: 485KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 223B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy