d6f6c9072ca199e25648f78265c2c7c1ceb372c575fb5c82f114674a3ffdb078 | Triage

Submit
Reports

Overview

overview

7

Static

static

d6f6c9072c...78.exe

windows7-x64

7

d6f6c9072c...78.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d6f6c9072ca199e25648f78265c2c7c1ceb372c575fb5c82f114674a3ffdb078.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

d6f6c9072ca199e25648f78265c2c7c1ceb372c575fb5c82f114674a3ffdb078.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d6f6c9072ca199e25648f78265c2c7c1ceb372c575fb5c82f114674a3ffdb078
Size

62KB
MD5

0114c0398bb864cc9edd48d15127ba25
SHA1

6ad1611fc75506d7fe1baeecdbaa456c4f40b0cc
SHA256

d6f6c9072ca199e25648f78265c2c7c1ceb372c575fb5c82f114674a3ffdb078
SHA512

723ce51c3768c058acca68d45f7dc0d64680616144ad460fd721aee90603ee214ce7a9c2f3d01ae0d18686a6612b67a49f8557bee8e8270489e314468fc8e783
SSDEEP

768:xKe8/hAbuN+XJQ2YEBwKtWch+vkH1JYkyEGMAxV81FVTs+n11g8svb:knAbekJQ2dfh+6TE7MWiTDnngrvb

Score

N/A

Malware Config

Signatures

Files

d6f6c9072ca199e25648f78265c2c7c1ceb372c575fb5c82f114674a3ffdb078
.exe windows x86

fde6f03eafba15fb28fc4203ec81515b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
GetStartupInfoA
CreateEventA
VirtualQuery
lstrlenA
FindResourceW
GetCommandLineA
HeapDestroy
CloseHandle
Sleep
TlsGetValue
GetCommandLineA
HeapCreate
GetEnvironmentVariableA
GetModuleHandleA
ResetEvent
GetVolumePathNameA
CloseHandle
DeleteFileW
CancelIo

user32

IsZoomed
FindWindowA
GetWindowLongA
DispatchMessageA
IsWindow
GetSysColor
DispatchMessageA
GetClassInfoA
CreateIcon
DestroyMenu
DrawTextW
CallWindowProcA
PeekMessageA

psbase

SPDeleteSubtype
SPDeleteSubtype
SPDeleteSubtype
SPDeleteSubtype

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 54KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zlatsqt
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy