d6440b717f9f62b6606dba697ed45080c8b639df6bb162795d0f18f73d0c207b | Triage

Submit
Reports

Overview

overview

8

Static

static

d6440b717f...7b.exe

windows7-x64

8

d6440b717f...7b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d6440b717f9f62b6606dba697ed45080c8b639df6bb162795d0f18f73d0c207b.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

d6440b717f9f62b6606dba697ed45080c8b639df6bb162795d0f18f73d0c207b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

d6440b717f9f62b6606dba697ed45080c8b639df6bb162795d0f18f73d0c207b
Size

767KB
MD5

04b562f085d0f50ef1a3300efec7e6df
SHA1

3108ec76bd8eeac869b49ab0dc573e5e96a5b1ef
SHA256

d6440b717f9f62b6606dba697ed45080c8b639df6bb162795d0f18f73d0c207b
SHA512

d8f09cb30bbc757007a4701d06e31edc25e10b65bcdcbe32b57a9b1b72f6025adef852f45d6aebadf91ece45e00ef84b507463e9520ea0e0ae323800b3c219ab
SSDEEP

12288:xl7sutpAUEhmUmqr7qyF0aPfLp1U9olrFE6CcxDeL9pcYrG9PT/ZZuCYs0o:xlHry5Pzp1iotD1STILB10o

Score

N/A

Malware Config

Signatures

Files

d6440b717f9f62b6606dba697ed45080c8b639df6bb162795d0f18f73d0c207b
.exe windows x86

90f9a362c1bb104722512336201552b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
CreateFileMappingW
lstrlenA
HeapDestroy
SetLastError
MapViewOfFile
ReleaseMutex
SetLastError
CreateDirectoryW
HeapSize
ReleaseSemaphore
CreateFileA
RemoveDirectoryW
RemoveDirectoryW
CreateMutexA
GetCommandLineW
OpenEventW
DeleteFileA
LoadLibraryA
VirtualProtect
FatalExit
GetVersion
GetStartupInfoA
GetStdHandle
CreatePipe

uxtheme

DrawThemeEdge
CloseThemeData
IsThemeActive
DrawThemeBackground
GetWindowTheme
GetThemeTextExtent
GetThemeTextMetrics
GetThemeSysSize
GetThemeColor
GetThemeBool
OpenThemeData
CloseThemeData
SetWindowTheme

iernonce

InitCallback
RunOnceExProcess
RunOnceExProcess
InitCallback

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy