06cf9a2e007ed27939800aa8fa79a030d29e84db10c310628b17dff312aa9e14 | Triage

Submit
Reports

Overview

overview

Static

static

06cf9a2e00...14.exe

windows7-x64

06cf9a2e00...14.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

06cf9a2e007ed27939800aa8fa79a030d29e84db10c310628b17dff312aa9e14.exe

Resource

win7-20221111-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

06cf9a2e007ed27939800aa8fa79a030d29e84db10c310628b17dff312aa9e14.exe

Resource

win10v2004-20220812-en

evasion persistence spyware stealer trojan

windows10-2004-x64

12 signatures

150 seconds

General

Target

06cf9a2e007ed27939800aa8fa79a030d29e84db10c310628b17dff312aa9e14
Size

725KB
MD5

2567b87ad809e934ea7bcadc37c21260
SHA1

5ac7ed5296d27aef6823c11b57a131423ce4e0e8
SHA256

06cf9a2e007ed27939800aa8fa79a030d29e84db10c310628b17dff312aa9e14
SHA512

7f8aeafca77935b1370e09c27f2597b12882a8ee971ddf5c8158d9c4ab9662a48a84bf80d536cba8e0d9d451a9b40c8a22d50b955f3081473dd3b2419a40dbfb
SSDEEP

12288:/juF5EUWHJnRveR7xotf7FO8LgfimIeA1iTTIE/qbs:LuzaHRRvoABD9s

Score

N/A

Malware Config

Signatures

Files

06cf9a2e007ed27939800aa8fa79a030d29e84db10c310628b17dff312aa9e14
.exe windows x86

777683d0c6d69977ba8e9b980ccc0a84

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DuplicateIcon
SHEnumerateUnreadMailAccountsW

ole32

GetRunningObjectTable

ntdll

RtlAbsoluteToSelfRelativeSD

kernel32

GetLastError
EnumResourceTypesW
GetFileInformationByHandle

user32

GetLastInputInfo
GetInputDesktop
GetMessageTime

Sections

.text
Size: 716KB - Virtual size: 720KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy