3de6417ac91b5ab11ef177986db30877011a7c883bb2e34630e01729fb8dd64a | Triage

Submit
Reports

Overview

overview

Static

static

3de6417ac9...4a.exe

windows7-x64

3de6417ac9...4a.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3de6417ac91b5ab11ef177986db30877011a7c883bb2e34630e01729fb8dd64a.exe

Resource

win7-20220901-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

3de6417ac91b5ab11ef177986db30877011a7c883bb2e34630e01729fb8dd64a.exe

Resource

win10v2004-20221111-en

evasion persistence spyware stealer trojan

windows10-2004-x64

14 signatures

150 seconds

General

Target

3de6417ac91b5ab11ef177986db30877011a7c883bb2e34630e01729fb8dd64a
Size

990KB
MD5

4d948db047fd712114794d2bdb656600
SHA1

90700ccfe83b0c0b41905cbb6a46892eac5af211
SHA256

3de6417ac91b5ab11ef177986db30877011a7c883bb2e34630e01729fb8dd64a
SHA512

f684e458e9f676741d8e32d9bca30084d71028f7dd485889fbe7a2b3a226ef67beee720a9720a045e95c9bb89f77eed557b92f3881a9389943d0c67f9a30e0b9
SSDEEP

24576:WrzZe6zppjDGICJfaO8BHAOtfUrZi3V5RdGu4nTPS2GQ0l4YN0TGLHcK3x:WrzooDmWBZmK/V4nTPS2GQ0l4YN0TGL8

Score

N/A

Malware Config

Signatures

Files

3de6417ac91b5ab11ef177986db30877011a7c883bb2e34630e01729fb8dd64a
.exe windows x86

e6dbf04b31f67c16157a575b81192128

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

ZwAccessCheck
RtlSetEnvironmentVariable

advapi32

IsTokenUntrusted

ws2_32

WSCInstallNameSpace

user32

GetFocus

kernel32

GetCommandLineA
GetVersion

Sections

.text
Size: 987KB - Virtual size: 988KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy