6291136973acf30da088115dc4628d10df112195ccd3e16708b4f56d8a8104b1 | Triage

Submit
Reports

Overview

overview

8

Static

static

6291136973...b1.exe

windows7-x64

8

6291136973...b1.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6291136973acf30da088115dc4628d10df112195ccd3e16708b4f56d8a8104b1.exe

Resource

win7-20221111-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

6291136973acf30da088115dc4628d10df112195ccd3e16708b4f56d8a8104b1.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6291136973acf30da088115dc4628d10df112195ccd3e16708b4f56d8a8104b1
Size

303KB
MD5

910442dd829f03ee9939c58660a155bc
SHA1

23ab1156d9f33462830bd3e793d8b97ee53f5fc5
SHA256

6291136973acf30da088115dc4628d10df112195ccd3e16708b4f56d8a8104b1
SHA512

5966b5ef7c0310039210a69635d0dd634398a3eadcf93e0397f3f7c63f613a2d84e91bfbe477b0489c7aa66618247410c67df5c396e8cdbf5f1ffc524f328ea4
SSDEEP

6144:xmXZD4js+fJ8vVVWf2mL+DI73w7iWQtyJDozkE96myYRZOv2Nt:IZD4avVViL2I7yiWQMiznMkt

Score

N/A

Malware Config

Signatures

Files

6291136973acf30da088115dc4628d10df112195ccd3e16708b4f56d8a8104b1
.exe windows x86

de8edace1f3774a7dd9dfe1a20e93807

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
CloseHandle
CreateMutexA
GetModuleHandleW
ReleaseMutex
InterlockedExchange
GetExitCodeProcess
GetACP
GetCommandLineA
ResetEvent
GetStdHandle
GetEnvironmentVariableW
GetPrivateProfileIntW
CreateEventA
LocalSize
lstrlenA
SuspendThread
HeapCreate
GlobalFree
WriteFile

advapi32

RegQueryValueW
RegCloseKey
RegCreateKeyExW
IsValidSecurityDescriptor
CreateServiceA
ControlService
IsValidSid
RegEnumKeyW
RegDeleteKeyA
IsTextUnicode
CloseEventLog
ClearEventLogW
RegDeleteValueA

devenum

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

hdwwiz.cpl

InstallNewDevice

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy