6d83e68a3b5597bfadea8b213b5c9182431b163af96fbd19712624d86041d9b2 | Triage

Submit
Reports

Overview

overview

8

Static

static

6d83e68a3b...b2.exe

windows7-x64

8

6d83e68a3b...b2.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6d83e68a3b5597bfadea8b213b5c9182431b163af96fbd19712624d86041d9b2.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

6d83e68a3b5597bfadea8b213b5c9182431b163af96fbd19712624d86041d9b2.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

6d83e68a3b5597bfadea8b213b5c9182431b163af96fbd19712624d86041d9b2
Size

502KB
MD5

d20fc74866661a97a83ba8c2de2bb9a7
SHA1

f7ecc2ad26b3921a5d009c276b8449f38104efe1
SHA256

6d83e68a3b5597bfadea8b213b5c9182431b163af96fbd19712624d86041d9b2
SHA512

fc124f817c07a56f8c513f480fdb8032b363616b3b754ab980813cde3ccd805179b73071abf617070362083d6577eb24f5cb32d546e7f3b3b8ab4447dc2203ad
SSDEEP

12288:IonD6sOvA118sYCkwamja7bcZTrE5FC3elX/XICHMh:IoD6sOv618ErQAsXvICHY

Score

N/A

Malware Config

Signatures

Files

6d83e68a3b5597bfadea8b213b5c9182431b163af96fbd19712624d86041d9b2
.exe windows x86

e259db061e7e778e9b447a34b2a58466

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
lstrcmpiW
GetModuleHandleA
Sleep
lstrcmpiW
FileTimeToLocalFileTime
GetProcessHeap
GetDriveTypeW
DeleteFileA
IsValidLocale
CreateNamedPipeW
GetModuleFileNameA
CreateMailslotW
HeapCreate
SetLastError
lstrcmpiW
GetLogicalDriveStringsW
GetVolumePathNameW
WaitForMultipleObjects
lstrlenA
lstrcmpiW
OpenMutexA
lstrcmpiW

scecli

DeltaNotify
SceOpenPolicy
InitializeChangeNotify
SceSysPrep

Sections

.text
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 495KB - Virtual size: 495KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy