f79c3b4650c7b90f250c3fdd2e3fb690ac1cfd9f4dbc91a220ce83cdcd2287c6 | Triage

Submit
Reports

Overview

overview

Static

static

f79c3b4650...c6.exe

windows7-x64

f79c3b4650...c6.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f79c3b4650c7b90f250c3fdd2e3fb690ac1cfd9f4dbc91a220ce83cdcd2287c6.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

f79c3b4650c7b90f250c3fdd2e3fb690ac1cfd9f4dbc91a220ce83cdcd2287c6.exe

Resource

win10v2004-20220812-en

evasion persistence

windows10-2004-x64

4 signatures

150 seconds

General

Target

f79c3b4650c7b90f250c3fdd2e3fb690ac1cfd9f4dbc91a220ce83cdcd2287c6
Size

76KB
MD5

7bcaf74fda3b14721fe0ad93aa1b3182
SHA1

8d5781af3746a2101fe9a7e3efde69f51a15bb44
SHA256

f79c3b4650c7b90f250c3fdd2e3fb690ac1cfd9f4dbc91a220ce83cdcd2287c6
SHA512

192dc8f0d235f0b034fe548223b1725f88414b2af136867af35b5713f38381f4f5e34aa279464f2272a3fff579e6a17b0fa014db0eb90e38ba348737544e52a4
SSDEEP

1536:riHCH0JVRJMOVtSwRjz6g6PeUCUsv6vnNHT:+HCH0dJ3VtSaj2g6PeUCVS/9

Score

N/A

Malware Config

Signatures

Files

f79c3b4650c7b90f250c3fdd2e3fb690ac1cfd9f4dbc91a220ce83cdcd2287c6
.exe windows x86

56fa9928bea9dd2dbfb934d2646c415a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetActiveWindow
EnumChildWindows
SetWindowLongA
SetWindowTextA
IsCharAlphaA
GetDesktopWindow
MoveWindow
DialogBoxParamA

ole32

CoRevokeClassObject
GetClassFile

comctl32

InitCommonControlsEx

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

kernel32

GetDateFormatA
HeapFree
IsBadStringPtrA
LocalAlloc
GetStartupInfoA
LoadResource
SetFileAttributesA
HeapDestroy
FindResourceExA
ExitProcess
GetTimeZoneInformation
GetProcAddress
FreeLibrary
LoadLibraryA
DeleteCriticalSection
InitializeCriticalSection
LocalFree
GetTickCount
ResumeThread
HeapCreate

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

exnjkbu
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy