6a85120b1003905c658e6efb7aaabf60715e501d88b98ec63469254df5b6a7d0 | Triage

Submit
Reports

Overview

overview

8

Static

static

6a85120b10...d0.exe

windows7-x64

8

6a85120b10...d0.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6a85120b1003905c658e6efb7aaabf60715e501d88b98ec63469254df5b6a7d0.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

6a85120b1003905c658e6efb7aaabf60715e501d88b98ec63469254df5b6a7d0.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6a85120b1003905c658e6efb7aaabf60715e501d88b98ec63469254df5b6a7d0
Size

759KB
MD5

09ba507a58929c0fa435018eb1e9c443
SHA1

6a7a917d1f1bb53866cc2fe5a3f9bc4ce2d6d1fc
SHA256

6a85120b1003905c658e6efb7aaabf60715e501d88b98ec63469254df5b6a7d0
SHA512

8d7bd63e9a5aa7026c9dfcb90981de1d4e5b09041c5bcdcf05d29ffc1d2822df24ec539fbccbe5083ba737a9e54ddbde647c28ef019cc5629cc74344b813e914
SSDEEP

12288:WyiJz0KzybSiEj9dfQYY36y3vU6RN3gpNLg+N2SHctALHfblrbR6Op:WyiJIHbSiEBdfQYi3vUo3gpTN2SHEs9J

Score

N/A

Malware Config

Signatures

Files

6a85120b1003905c658e6efb7aaabf60715e501d88b98ec63469254df5b6a7d0
.exe windows x86

ab34558e5c47be417f50cb4b44c73b72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
SetLastError
HeapDestroy
GetCommandLineA
CloseHandle
HeapCreate
lstrlenA
EnumResourceTypesA
CreateEventW
GetStartupInfoA
GetFileAttributesA
GetCommandLineA
CloseHandle
TlsGetValue
GetTimeFormatW
GetModuleHandleA
GetConsoleTitleA
GetEnvironmentVariableA
VirtualQuery
GlobalFlags

advapi32

RegEnumKeyA
RegCreateKeyExW
RegDeleteValueA
IsValidAcl
InitializeSid
IsValidSid
IsValidSid
IsValidSid
IsValidSid
CreateProcessAsUserA
RegQueryValueW
IsValidSecurityDescriptor
IsValidSid

asycfilt

FilterCreateInstance
FilterCreateInstance
FilterCreateInstance
FilterCreateInstance

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 753KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy