2ab6b0dea6047ed548e59b40f3dd0b7f8277c6414394cc3aed8b60f684b023b4 | Triage

Submit
Reports

Overview

overview

Static

static

2ab6b0dea6...b4.exe

windows7-x64

2ab6b0dea6...b4.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2ab6b0dea6047ed548e59b40f3dd0b7f8277c6414394cc3aed8b60f684b023b4.exe

Resource

win7-20220812-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

2ab6b0dea6047ed548e59b40f3dd0b7f8277c6414394cc3aed8b60f684b023b4.exe

Resource

win10v2004-20220812-en

evasion persistence spyware stealer trojan

windows10-2004-x64

14 signatures

150 seconds

General

Target

2ab6b0dea6047ed548e59b40f3dd0b7f8277c6414394cc3aed8b60f684b023b4
Size

493KB
MD5

18214553bedab604fd5e32c5360f2dd0
SHA1

88e654b784374a1edfda294907cd01da740a4768
SHA256

2ab6b0dea6047ed548e59b40f3dd0b7f8277c6414394cc3aed8b60f684b023b4
SHA512

a101976d14f0535ed02f42fab279f53fb006e9d42a5459605aa2d9e9ea8502930ae651762a2a265d0501a69699c332f7a13943649dfbabee4b781384ef899470
SSDEEP

12288:MvX1CFPJ8DniGTFWOQEii9HWu4wenWuU/OhpNGdB4r:KFmSDni2FW9E5pjeo/Qpkr4r

Score

N/A

Malware Config

Signatures

Files

2ab6b0dea6047ed548e59b40f3dd0b7f8277c6414394cc3aed8b60f684b023b4
.exe windows x86

2f234899c52590911d5da72ffb4194cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VarBoolFromI8

shell32

ILGetNext

ntdll

RtlAddAccessDeniedAce

kernel32

GetCommandLineW
GetCurrentThread

Sections

.text
Size: 486KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 217B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy