491cba14d0adc80a22b619fb88b38017f710d0c2f7c768f272aac38f515be0ec | Triage

Submit
Reports

Overview

overview

8

Static

static

491cba14d0...ec.exe

windows7-x64

8

491cba14d0...ec.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

491cba14d0adc80a22b619fb88b38017f710d0c2f7c768f272aac38f515be0ec.exe

Resource

win7-20220812-en

discovery evasion persistence

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

491cba14d0adc80a22b619fb88b38017f710d0c2f7c768f272aac38f515be0ec.exe

Resource

win10v2004-20220812-en

discovery evasion persistence

windows10-2004-x64

9 signatures

150 seconds

General

Target

491cba14d0adc80a22b619fb88b38017f710d0c2f7c768f272aac38f515be0ec
Size

256KB
MD5

a3375249a92f2fad7aca262a4c4e4adc
SHA1

84e1e4e06b0d4999c3387a883f3b381edd1f68de
SHA256

491cba14d0adc80a22b619fb88b38017f710d0c2f7c768f272aac38f515be0ec
SHA512

82eacc42ac9149664708eda47f45dd469c256db20f47e91d10d4873cb6f75b0e85844e6abb1e815aac9dd69f9862852f28d1fb404957f9931e3532a53ece6ce4
SSDEEP

3072:bnT9720jgntjKC0AeVWyfmHWwQO/igFP0TCOiuvLY8IfFmYBcdieu7cccccccccc:XFNjaLeVgdQO/iOe88q4YBc

Score

N/A

Malware Config

Signatures

Files

491cba14d0adc80a22b619fb88b38017f710d0c2f7c768f272aac38f515be0ec
.exe windows x86

06e9681b3e0d62c92841e1f8e174d2f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

DllInitialize
AlphaBlend

user32

DialogBoxParamA
wsprintfA
PeekMessageW
GetDlgItemTextW
GetClassLongA
LoadMenuW
FindWindowExA
CreateDesktopW
FlashWindow
GetPropW
IsDialogMessageW
PostMessageW
IsZoomed
LoadBitmapA
DispatchMessageW
InsertMenuA
CharToOemA

kernel32

Sleep
GetModuleHandleA
LoadLibraryA
GetTimeFormatW
GetConsoleTitleW
MapViewOfFile
WriteConsoleW
GetCurrentDirectoryA
HeapSize
GetCommandLineA
IsBadStringPtrA
VirtualProtect

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy