b4c490f503a6924f8a23ebce2e65b637bed817a29811bee6b788940f3388a8be | Triage

Submit
Reports

Overview

overview

1

Static

static

b4c490f503...be.exe

windows7-x64

1

b4c490f503...be.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b4c490f503a6924f8a23ebce2e65b637bed817a29811bee6b788940f3388a8be.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b4c490f503a6924f8a23ebce2e65b637bed817a29811bee6b788940f3388a8be.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b4c490f503a6924f8a23ebce2e65b637bed817a29811bee6b788940f3388a8be
Size

60KB
MD5

d65a16b099cf5acbfed4daef51f69a05
SHA1

8fd2981bb40e27ff80941ff918d54a81e08738cf
SHA256

b4c490f503a6924f8a23ebce2e65b637bed817a29811bee6b788940f3388a8be
SHA512

9574ee67e5a1dc72a94da718d26f6b432ab8b424b61a2235a3daf5750e924878248191667da4056013bccf3d04a4cc527c15aa1e3b6cd6d04b119f04848da271
SSDEEP

768:eMX+8BR+hGvATx94veRfEw97NVEKl06olotW1SVa4PhZ2O5HH7Lrvin3VZSoso:tdoTdLfNY9Sc4SOZ7HubS7

Score

N/A

Malware Config

Signatures

Files

b4c490f503a6924f8a23ebce2e65b637bed817a29811bee6b788940f3388a8be
.exe windows x86

66993933adba2c1e0f8921778dbd56b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDialogMessageA
SetFocus
LoadCursorW
IsCharLowerW
LoadImageA
wsprintfW
IsWindowVisible
CharToOemA
DrawTextA
DispatchMessageW
GetClassInfoA
LoadBitmapA
MessageBoxW
PostMessageW

esent

JetBeginTransaction
JetCloseTable
JetCloseFile
JetCommitTransaction
JetCloseDatabase

ctl3d32

Ctl3dEnabled
Ctl3dUnregister
Ctl3dGetVer
Ctl3dCtlColor
Ctl3dRegister

kernel32

GetCurrentDirectoryW
CreateEventA
SearchPathA
GetProcessHeap
GetACP
GetDriveTypeW
GetProcAddress
ReplaceFileW
GetLogicalDriveStringsA
SetErrorMode
HeapAlloc
CreateSemaphoreW
GetDateFormatA
ReadFile
GetModuleHandleA
OpenMutexW
CompareStringA
GetShortPathNameA
GetSystemTime
InterlockedIncrement
CreateWaitableTimerA
FindFirstFileW
CopyFileW
WaitForSingleObject

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy