46c8ce4634399a6642e9621bf144cccbde4ba1bc93671e56cc5aeb2fdc2e3c49 | Triage

Submit
Reports

Overview

overview

Static

static

46c8ce4634...49.exe

windows7-x64

46c8ce4634...49.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

46c8ce4634399a6642e9621bf144cccbde4ba1bc93671e56cc5aeb2fdc2e3c49.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

46c8ce4634399a6642e9621bf144cccbde4ba1bc93671e56cc5aeb2fdc2e3c49.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

46c8ce4634399a6642e9621bf144cccbde4ba1bc93671e56cc5aeb2fdc2e3c49
Size

197KB
MD5

001235cd4cd38176a964286c7eae2c93
SHA1

b811a6d19cceb9b54d5c9657e9a32a48d58ea8e2
SHA256

46c8ce4634399a6642e9621bf144cccbde4ba1bc93671e56cc5aeb2fdc2e3c49
SHA512

4cc89a005943b95d5f4d3ffb5a64a04bc6ccfa7b8a720b8c811fa497b86c9f5798e136187627dc527f66b760b6b23e8984b608fee6a55795386bbf7be5529046
SSDEEP

3072:ue+PMnMYMN58BmQ8apaAkWi3hMRpSDg+ueTRkwdCFJJy+xw+dZvxwYNpzs5c/XyU:vOn8Bme9pSpueTR1sdJwqwp5cfy0CPYJ

Score

N/A

Malware Config

Signatures

Files

46c8ce4634399a6642e9621bf144cccbde4ba1bc93671e56cc5aeb2fdc2e3c49
.exe windows x86

e9d08bf5741782b10ec0ff0b6cac05e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryEmptyW

advapi32

LookupAccountNameW
CryptDecrypt
CryptHashData
CryptDestroyKey
OpenSCManagerW

gdi32

GetNearestPaletteIndex
CreateSolidBrush
Ellipse
CreateDIBSection
SetViewportOrgEx
SetWindowOrgEx
RemoveFontResourceW
DeleteObject

user32

GetDlgCtrlID
TileWindows
InvalidateRect
SetTimer
CharUpperW
EndPaint
DispatchMessageA
MapWindowPoints
GetForegroundWindow
CharPrevA
ShowScrollBar
SetScrollPos
IsCharLowerA
GetDCEx
AdjustWindowRect
RemovePropW
CharToOemBuffA

kernel32

FoldStringW
WaitForSingleObject
lstrcatW
GetDateFormatA
SetTimerQueueTimer
lstrcpynW
GlobalLock

Exports

Exports

EnumTextA@16
AddFileA@4
FreePointA@12
RemoveDeviceNew@12
ModifyVersionNew@16

Sections

.text
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy