6168d3ffaea7f130b25ad4165e2d04edb6f26b6ff02cd4e58bedd4c1cd245d17 | Triage

Submit
Reports

Overview

overview

Static

static

6168d3ffae...17.exe

windows7-x64

1

6168d3ffae...17.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6168d3ffaea7f130b25ad4165e2d04edb6f26b6ff02cd4e58bedd4c1cd245d17.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

6168d3ffaea7f130b25ad4165e2d04edb6f26b6ff02cd4e58bedd4c1cd245d17.exe

Resource

win10v2004-20220812-en

gh0strat rat upx

windows10-2004-x64

5 signatures

150 seconds

General

Target

6168d3ffaea7f130b25ad4165e2d04edb6f26b6ff02cd4e58bedd4c1cd245d17
Size

207KB
MD5

8db42cc201627cbf9382b8e4fffc843f
SHA1

70897d67975b3d6b1ab49c7ab9e7a0d756374641
SHA256

6168d3ffaea7f130b25ad4165e2d04edb6f26b6ff02cd4e58bedd4c1cd245d17
SHA512

2b17fbc8c1d271e5b3e5c5b73d86a41c33cdfbb975f7c4cf4732d3bc19476453b5ec1b847a752c4d1b5f56ac3fdd5b3c494c95d4831677620a7bf8a771af9eb5
SSDEEP

3072:uQhZkOLfuDg0PtOqzKONqsEykRLSDZoBmLBLARnXaC9QtKNk44a0wCQzMVTZ:8OFStZzKqqsE6qQCRnXf9ae90wloV9

Score

N/A

Malware Config

Signatures

Files

6168d3ffaea7f130b25ad4165e2d04edb6f26b6ff02cd4e58bedd4c1cd245d17
.exe windows x86

056d9b9e4e4d0b94131b46fe91becf14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
VirtualAlloc
Sleep
VirtualProtect
VirtualFree
GetProcAddress
LoadLibraryA
IsBadReadPtr
HeapFree
FreeLibrary
GetModuleHandleA
GetStartupInfoA

msvcrt.dll

memset
realloc
free
??2@YAPAXI@Z
memcpy
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
??3@YAXPAX@Z
strlen
_stricmp

Exports

Exports

Hai
wuhen

Sections

PAGE
Size: 1024B - Virtual size: 722B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 113KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy