639cfa08b619aadca515d4ad8a6255b56310ba4a94a822f3eae014b9ba065648 | Triage

Submit
Reports

Overview

overview

Static

static

639cfa08b6...48.exe

windows7-x64

639cfa08b6...48.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

639cfa08b619aadca515d4ad8a6255b56310ba4a94a822f3eae014b9ba065648.exe

Resource

win7-20220901-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

639cfa08b619aadca515d4ad8a6255b56310ba4a94a822f3eae014b9ba065648.exe

Resource

win10v2004-20220812-en

evasion persistence spyware stealer trojan

windows10-2004-x64

13 signatures

150 seconds

General

Target

639cfa08b619aadca515d4ad8a6255b56310ba4a94a822f3eae014b9ba065648
Size

484KB
MD5

67813b8f539e6890ab381ba526088390
SHA1

34b30f62c80c45f4f9c64530141b22ca904fa94e
SHA256

639cfa08b619aadca515d4ad8a6255b56310ba4a94a822f3eae014b9ba065648
SHA512

d343717c3da151f01f0844ee4790ce73914906d3516f37eeb14ae554be617d2916331ef26127f5ac6c030176c1647d96b35d6b6213d0ac6dc06f790ae611850b
SSDEEP

12288:uwksLDrfHq6QiTC9XphPn2w1DExxlZ9DBjQyNrRB2gWH8zw:vLDrNTwXpxCxbDJQs72pH88

Score

N/A

Malware Config

Signatures

Files

639cfa08b619aadca515d4ad8a6255b56310ba4a94a822f3eae014b9ba065648
.exe windows x86

2524f2796e8ea14338c99ceffc2a9c5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetUserDefaultLangID
SetConsoleCursorInfo
EnumCalendarInfoA

advapi32

CryptContextAddRef
LsaSetInformationPolicy

user32

GetShellWindow

Sections

.text
Size: 477KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 259B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy