6e7d9e44a7631ac684aa132cd1f46c960b6e5e5f0ebccf34ef43e43b5d3e2efa | Triage

Submit
Reports

Overview

overview

5

Static

static

6e7d9e44a7...fa.exe

windows7-x64

5

6e7d9e44a7...fa.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6e7d9e44a7631ac684aa132cd1f46c960b6e5e5f0ebccf34ef43e43b5d3e2efa.exe

Resource

win7-20220901-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

6e7d9e44a7631ac684aa132cd1f46c960b6e5e5f0ebccf34ef43e43b5d3e2efa.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

6e7d9e44a7631ac684aa132cd1f46c960b6e5e5f0ebccf34ef43e43b5d3e2efa
Size

437KB
MD5

31776e844a0441b1a7888fc8215da051
SHA1

ec20bc9c2775e494d54d7e5c84f396e03d05dfb6
SHA256

6e7d9e44a7631ac684aa132cd1f46c960b6e5e5f0ebccf34ef43e43b5d3e2efa
SHA512

d0b99dbdf280a8c5bc2a87caf83511e96db066bc37a3d5b4979924d02edf2d4832d92d5623c1303402a4a878e96afcd69ddff7451843e95b34ed74e01894f309
SSDEEP

6144:Q/C1zfeaVe9ImhLPfBn1MzC46pBrRTWdx4wPCk5n+34mQ6pAA5I0b9Q:Q/+ruZ9RqudBs6k5I4ncAEb9Q

Score

N/A

Malware Config

Signatures

Files

6e7d9e44a7631ac684aa132cd1f46c960b6e5e5f0ebccf34ef43e43b5d3e2efa
.exe windows x86

8f88099c062ab84e6063fefdee9c7ebd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

wsock32

__WSAFDIsSet

version

VerQueryValueW

winmm

timeGetTime

comctl32

ImageList_Remove

mpr

WNetGetConnectionW

wininet

FtpOpenFileW

psapi

EnumProcesses

userenv

LoadUserProfileW

user32

GetDC

gdi32

LineTo

comdlg32

GetSaveFileNameW

advapi32

GetAce

shell32

DragFinish

ole32

CoInitialize

oleaut32

VariantChangeType

Sections

.MPRESS1
Size: 387KB - Virtual size: 860KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy