c2fbf08c6b8ff518a0dc5fab28b8079983aa1a0c368f2e77ea359dff2e3fe0b6 | Triage

Submit
Reports

Overview

overview

1

Static

static

c2fbf08c6b...b6.exe

windows7-x64

1

c2fbf08c6b...b6.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c2fbf08c6b8ff518a0dc5fab28b8079983aa1a0c368f2e77ea359dff2e3fe0b6.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2fbf08c6b8ff518a0dc5fab28b8079983aa1a0c368f2e77ea359dff2e3fe0b6.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

c2fbf08c6b8ff518a0dc5fab28b8079983aa1a0c368f2e77ea359dff2e3fe0b6
Size

285KB
MD5

158b8f5c5875514ba2313df74bb97500
SHA1

6736478cd72438f2285324fc8a8c317dff77f024
SHA256

c2fbf08c6b8ff518a0dc5fab28b8079983aa1a0c368f2e77ea359dff2e3fe0b6
SHA512

36a98912542ad916c881e3e0edfce43079b3bdd53f2cba8862e71a2d6aabea8d697e066273400b8b3d0cb1dcf66a67e0a41f189f30ae8e715a349be47bc19ce0
SSDEEP

6144:/RQMnbo5uXsb+iZkEfi5JUtFR55GQ7AyoGBNSAprAcHD:/Rhns5uXsb+Ctq5JAxweJohAmoD

Score

N/A

Malware Config

Signatures

Files

c2fbf08c6b8ff518a0dc5fab28b8079983aa1a0c368f2e77ea359dff2e3fe0b6
.exe windows x86

745c61682ecc1720a5f6f031073cfdb9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

glmf32

glsGLRCLayer
glsFlush

kernel32

DeleteFileA
InitializeCriticalSection
GetProcAddress
LoadLibraryA
GetLastError
GetTickCount
GetCurrentProcessId
EnterCriticalSection
GetEnvironmentStringsA
QueryPerformanceCounter
GetOEMCP
DeleteCriticalSection
GetComputerNameW
LeaveCriticalSection
GetComputerNameExW
GetStartupInfoA

ws2_32

htonl
htons

advapi32

GetTraceEnableLevel
UnregisterTraceGuids
InitializeAcl
GetSecurityDescriptorOwner
InitializeSecurityDescriptor
RegQueryValueExW
AddAccessAllowedAce
RegOpenKeyExW
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner
TraceMessage

msvcrt

swprintf
__dllonexit
wcslen
_adjust_fdiv
_onexit
_initterm
wcsncmp
malloc
wcscmp
free
_purecall
wcscpy

netapi32

DsGetDcNameW
NetApiBufferFree

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy