06e872feee20d988a2e67954eca9a4d2211585f823e5b84a92b6f0d2071caaca | Triage

Submit
Reports

Overview

overview

Static

static

06e872feee...ca.exe

windows7-x64

06e872feee...ca.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

06e872feee20d988a2e67954eca9a4d2211585f823e5b84a92b6f0d2071caaca.exe

Resource

win7-20220901-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

06e872feee20d988a2e67954eca9a4d2211585f823e5b84a92b6f0d2071caaca.exe

Resource

win10v2004-20220901-en

evasion persistence spyware stealer trojan

windows10-2004-x64

15 signatures

150 seconds

General

Target

06e872feee20d988a2e67954eca9a4d2211585f823e5b84a92b6f0d2071caaca
Size

441KB
MD5

5b7b7d138d69935b2339a6f5b1d2b1f0
SHA1

2723e9c6ee99d7b925e5189b5e2df919a3eecd37
SHA256

06e872feee20d988a2e67954eca9a4d2211585f823e5b84a92b6f0d2071caaca
SHA512

4ce3e58219faae27553080794e3d6b448e3342fc4c4793a75e574d34716a0ca56b9531a6d7e4921f61415c326de73cc5c0892ae2ae798f8101aab34cbee29db8
SSDEEP

6144:HAbxI8/1ZdpP5OetNXR+zNb1/jgfc8Bg3uZzLtVli1hbf6WVhnFxj3OIfYoip9aC:gdphOWNXQzNxic802RQhnFhOIfY3pwXc

Score

N/A

Malware Config

Signatures

Files

06e872feee20d988a2e67954eca9a4d2211585f823e5b84a92b6f0d2071caaca
.exe windows x86

253fde473b26c343526b62d7d7d1a865

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

HBITMAP_UserMarshal

oleaut32

VarRound

ntdll

ZwRestoreKey

kernel32

GetConsoleProcessList
GetConsoleWindow
GetCurrentProcess

user32

GetMenuCheckMarkDimensions

Sections

.text
Size: 434KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy