2c8d6937dda59c68e3aa637e74bf351e51660037cb8480f58588e555c176464a | Triage

Submit
Reports

Overview

overview

Static

static

2c8d6937dd...4a.exe

windows7-x64

2c8d6937dd...4a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2c8d6937dda59c68e3aa637e74bf351e51660037cb8480f58588e555c176464a.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

2c8d6937dda59c68e3aa637e74bf351e51660037cb8480f58588e555c176464a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

2c8d6937dda59c68e3aa637e74bf351e51660037cb8480f58588e555c176464a
Size

162KB
MD5

92fe0b9b892ee1b33825000ba10e1d90
SHA1

bb32726aa9625a455b677645d409b1635145d8fb
SHA256

2c8d6937dda59c68e3aa637e74bf351e51660037cb8480f58588e555c176464a
SHA512

5ebd3950a95518a8f16ca8c445a906da48aca9cd554ef685fa9058c5a4bdebfd88c67190f811f8491c8c8cd05cec6ee9f926f2cc7ad9f46f06b7510f8556491e
SSDEEP

3072:rAd/kLsCI/KUTc5pUzEBTlZSz8ZXqStDL+bfO1xBbJJEFlr:rARkAVTc5UET8ERtDLQORnWlr

Score

N/A

Malware Config

Signatures

Files

2c8d6937dda59c68e3aa637e74bf351e51660037cb8480f58588e555c176464a
.exe windows x86

ab9997cf73022b782fa0a8ed4989001d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowDC

ntdll

_allmul
_aulldiv
_allshl
_aullrem
_aullshr

Exports

Exports

?PramsorbCineannaRinkoy@@YGEXZ
?YechyearhelpHelmChaoHallnusbe@@YGXPCUtagWNDCLASSW@@PCN@Z
?YokeTubeBodsUncowameazo@@YG_KACGPCGPCEU_FILETIME@@UWaurBineYuledyeet@@G@Z

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 262B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy