6ea9a220392383535a3624130393024e8871ffa33d2ef92deecbe48bd794bef4 | Triage

Submit
Reports

Overview

overview

3

Static

static

6ea9a22039...f4.exe

windows7-x64

1

6ea9a22039...f4.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6ea9a220392383535a3624130393024e8871ffa33d2ef92deecbe48bd794bef4.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

6ea9a220392383535a3624130393024e8871ffa33d2ef92deecbe48bd794bef4.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6ea9a220392383535a3624130393024e8871ffa33d2ef92deecbe48bd794bef4
Size

300KB
MD5

82bb0e0a74289dd7b059792378836800
SHA1

67d11d4522aeff4f71ca167f3c74dfd9dc5e8058
SHA256

6ea9a220392383535a3624130393024e8871ffa33d2ef92deecbe48bd794bef4
SHA512

4544db8920aa1ab943b180f8a39579581ed4176d49855070f273e22c45d465e25c4e6daca939203545ef6cadecb920accbbfd00932418e8fa285e4643e5664fd
SSDEEP

6144:wxWnOyA94tZUDQ4ugb+YVU5io4ngBqSPDBX737VJD/G7r8KWni:wgFA9WZauuYtiSPDBXV1dhi

Score

N/A

Malware Config

Signatures

Files

6ea9a220392383535a3624130393024e8871ffa33d2ef92deecbe48bd794bef4
.exe windows x86

2a898f3c9874512739bdf7a65a1b9277

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateDirectoryA
RemoveDirectoryA
CancelIo
GetModuleHandleA
FindClose
IsBadWritePtr
GetCommandLineA
SetLastError
FindResourceA
GetExitCodeThread
HeapSize
GetStdHandle
CreateMailslotW
ResetEvent
VirtualProtect
GetLocaleInfoA
GetDriveTypeW
GetFileAttributesA
MapViewOfFile
GetProcessHeap
ReleaseMutex

user32

GetWindowTextW
IsDialogMessageA
GetCapture
PeekMessageA
wsprintfA
LoadCursorA
SetCursor
GetWindowLongW
SetFocus
LoadImageW
PostMessageW
DestroyMenu
DispatchMessageA

ipsmsnap

DllRegisterServer
DllCanUnloadNow
DllGetClassObject
DllUnregisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.import
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy