6974449cc1cd90346227a4515bba8a8f30a8845dd840efa5331893e4728061c6 | Triage

Submit
Reports

Overview

overview

8

Static

static

6974449cc1...c6.exe

windows7-x64

8

6974449cc1...c6.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6974449cc1cd90346227a4515bba8a8f30a8845dd840efa5331893e4728061c6.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

6974449cc1cd90346227a4515bba8a8f30a8845dd840efa5331893e4728061c6.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

6974449cc1cd90346227a4515bba8a8f30a8845dd840efa5331893e4728061c6
Size

136KB
MD5

5a66ef8651d2f65cf2ede4da4e370bf0
SHA1

7702ca7b99930328d28382cbf6c4559fefa5ecf2
SHA256

6974449cc1cd90346227a4515bba8a8f30a8845dd840efa5331893e4728061c6
SHA512

bb8a66efd0f266e59bc92cfddf39420c9b0f6011e5cbdd2250279fa6f3c9618ba6ca8b24696444051cdae29f51262de9b220aae8d165f0a23e7016689ab34fa4
SSDEEP

3072:+WAf5zKL4y8hrNxhlYDKgXTXd5o9e+9lqOLVrhq+:vm5zo4yGY+gXTVsldLVVP

Score

N/A

Malware Config

Signatures

Files

6974449cc1cd90346227a4515bba8a8f30a8845dd840efa5331893e4728061c6
.exe windows x86

88808e21bd511c859f9429f9c7df9361

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo

kernel32

GetModuleHandleA
GetProcAddress
CloseHandle
RtlUnwind
GetModuleHandleW

user32

GetCursorInfo

crtdll

__GetMainArgs
exit
raise
signal

ulib

?QueryFsnodeArray@FSN_DIRECTORY@@QBEPAVARRAY@@PAVFSN_FILTER@@@Z
??0DSTRING@@QAE@XZ
??0PATH@@QAE@XZ
??0ARRAY@@QAE@XZ
??0ARGUMENT_LEXEMIZER@@QAE@XZ
??1PROGRAM@@UAE@XZ
??1PATH_ARGUMENT@@UAE@XZ

ntdll

RtlFreeHeap
RtlAllocateHeap

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 40B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc2
Size: 349B - Virtual size: 349B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy