6b5a1e427536690c978c3b6a543f0b73fbcc03e3112c18a0bb01402d12bda757 | Triage

Submit
Reports

Overview

overview

Static

static

6b5a1e4275...57.exe

windows7-x64

6b5a1e4275...57.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6b5a1e427536690c978c3b6a543f0b73fbcc03e3112c18a0bb01402d12bda757.exe

Resource

win7-20220901-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

6b5a1e427536690c978c3b6a543f0b73fbcc03e3112c18a0bb01402d12bda757.exe

Resource

win10v2004-20220901-en

evasion persistence spyware stealer trojan

windows10-2004-x64

16 signatures

150 seconds

General

Target

6b5a1e427536690c978c3b6a543f0b73fbcc03e3112c18a0bb01402d12bda757
Size

492KB
MD5

0486b28f85e1557d6a69822e24c10660
SHA1

2e22a426fb4efe8ba4f1c24e2b5c668bc584f4ff
SHA256

6b5a1e427536690c978c3b6a543f0b73fbcc03e3112c18a0bb01402d12bda757
SHA512

993cbe232b64b90f7ac30c23cd3ab922aadbfb82c63aabfb799316431015c9834e1798d2b769a20b0c1428984fadb75c931833285367f0ea086a70b41a1b23bb
SSDEEP

6144:pTo/0pj0lpP1B3OmwcjrHiAnZ9Kz5Iz9EQOwL7Gic6KzO7V6u7ywhkWAxEH+6G70:NKtO949Bz1ZO6Kz4V7ygX+HL523Eq

Score

N/A

Malware Config

Signatures

Files

6b5a1e427536690c978c3b6a543f0b73fbcc03e3112c18a0bb01402d12bda757
.exe windows x86

4b85387975d2f13b5ed541a6d5162110

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenFileMappingA
GetCurrentProcessId

advapi32

RegOpenKeyW

oleaut32

VarDecFromUI2

user32

GetCapture

Sections

.text
Size: 485KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 329B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy