f4684eed7c06c062eed0a9e03709f7d424a1ec61611a673fb93ff00cc0349437 | Triage

Submit
Reports

Overview

overview

3

Static

static

f4684eed7c...37.exe

windows7-x64

1

f4684eed7c...37.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f4684eed7c06c062eed0a9e03709f7d424a1ec61611a673fb93ff00cc0349437.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

f4684eed7c06c062eed0a9e03709f7d424a1ec61611a673fb93ff00cc0349437.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f4684eed7c06c062eed0a9e03709f7d424a1ec61611a673fb93ff00cc0349437
Size

296KB
MD5

437377cb631a04ef0c0046dd53d28710
SHA1

a58e6aed8f63733263a4600643cdc3361330dc36
SHA256

f4684eed7c06c062eed0a9e03709f7d424a1ec61611a673fb93ff00cc0349437
SHA512

c8a6e610e2d1c498856fa38edf7d602c4173323ef9535ef26338799897477146ab8367a694e37e687f0e5ec823052455b0e73819be952f929ab131432b1c5e25
SSDEEP

6144:bSTyVzx753VP+ySSAzQ5hEk9/7mTfGSVQOOeu:FBVPSSAzQ5qk9/qTecQOi

Score

N/A

Malware Config

Signatures

Files

f4684eed7c06c062eed0a9e03709f7d424a1ec61611a673fb93ff00cc0349437
.exe windows x86

cb0c038350bf8413cfb08facf1cdeca1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

Sleep
HeapDestroy
DeleteFileA
AddAtomW
LoadLibraryW
lstrlenW
CancelIo
VirtualProtect
WriteConsoleW
GetProcessHeap
WriteConsoleW
GetFileAttributesA
SetEvent
CopyFileA
HeapSize
WriteConsoleW
lstrcpyA
GetPrivateProfileSectionW
GetDriveTypeW
GetStartupInfoA
GetCommandLineA

mmcndmgr

DllRegisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

dsprop

MsgBox
FindSheet
ErrMsg
ErrMsg
MsgBox
ErrMsg
ReportError
FindSheet
MsgBox
CheckADsError
ReportError
FindSheet
CheckADsError

Sections

.text
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 274B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy