d616672f18d1f6a764e874afda51be5c63e2641b547c8cc3357fcf5aae8f7afe | Triage

Submit
Reports

Overview

overview

8

Static

static

d616672f18...fe.exe

windows7-x64

8

d616672f18...fe.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d616672f18d1f6a764e874afda51be5c63e2641b547c8cc3357fcf5aae8f7afe.exe

Resource

win7-20220901-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

d616672f18d1f6a764e874afda51be5c63e2641b547c8cc3357fcf5aae8f7afe.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d616672f18d1f6a764e874afda51be5c63e2641b547c8cc3357fcf5aae8f7afe
Size

311KB
MD5

6feab7346445e7b3d90c9d5f2e264200
SHA1

de79df87d96a8e5969d58c1ed8b32133cf31aa20
SHA256

d616672f18d1f6a764e874afda51be5c63e2641b547c8cc3357fcf5aae8f7afe
SHA512

82301e28f1b3ba42e76041753089f55f03a84ab9e78a2418938eb95d461129c7e5833f8c6c4548b6094f2245120a8d67ec03dae6647e1ed557194c6925d90324
SSDEEP

6144:+VdLYOptW7i4GLQc4WqFPDGsvzeY+p2NTOHR0JPCAk4:+nLLtW7i4GtcisvtYoTOHR0JqAT

Score

N/A

Malware Config

Signatures

Files

d616672f18d1f6a764e874afda51be5c63e2641b547c8cc3357fcf5aae8f7afe
.exe windows x86

ca787447a6bcc2a7838cdeced77807e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrlenA
OpenMutexA
GetStdHandle
GetCurrentThread
HeapFree
DeviceIoControl
DeleteFileA
CloseHandle
LoadLibraryA
FindVolumeClose
GetDriveTypeA
CreateEventW
GetCurrentProcess
GetStringTypeA
GetFileAttributesA
DeviceIoControl
HeapDestroy
LocalLock
GetPrivateProfileSectionA
VirtualProtectEx
GetPrivateProfileIntW

uxtheme

DrawThemeBackground
GetWindowTheme
GetThemeTextMetrics
GetThemeColor
CloseThemeData
GetThemeBool
DrawThemeEdge
OpenThemeData
GetThemeSysSize
SetWindowTheme
GetThemeTextExtent
IsThemeActive
CloseThemeData

odbccp32

SQLInstallDriver
SQLGetAvailableDrivers
SQLInstallODBC
SQLConfigDataSource

msasn1

ASN1BERDecBool

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy