4ce69672a07e568357ebd92e411f9816e286084068a7049b2561c8f9e8dd7482 | Triage

Submit
Reports

Overview

overview

8

Static

static

4ce69672a0...82.exe

windows7-x64

8

4ce69672a0...82.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4ce69672a07e568357ebd92e411f9816e286084068a7049b2561c8f9e8dd7482.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

4ce69672a07e568357ebd92e411f9816e286084068a7049b2561c8f9e8dd7482.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

4ce69672a07e568357ebd92e411f9816e286084068a7049b2561c8f9e8dd7482
Size

748KB
MD5

f8465469f7ae5516325cf8e26bc4b7e6
SHA1

d37c8ae20832a5fdae7aa55d2093e7b4bd16d875
SHA256

4ce69672a07e568357ebd92e411f9816e286084068a7049b2561c8f9e8dd7482
SHA512

0e344b7d13c9266bafe63776665008e7f29746df58232e086a8d9d0bb22e223b5f447f749ae6a3635b9b16c7dbf5bee50bb6c1d888baeb4f00a21a17487f33cd
SSDEEP

12288:qaAudWKdGlQKeLwGqShrdPBxylyWHSTj1qPc1W4YI1itJPwT+VxMfGYumaOq2M:fAXKd+GZTP2llyG8r4JPbMfGYumy

Score

N/A

Malware Config

Signatures

Files

4ce69672a07e568357ebd92e411f9816e286084068a7049b2561c8f9e8dd7482
.exe windows x86

774f09cb7f7e719bb90cfcd488fc322f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW
IsBadReadPtr
GetTickCount
GetModuleHandleA
GetFileAttributesA
WaitForMultipleObjects
GetFileTime
CreateDirectoryA
HeapFree
CancelIo
FindVolumeClose
VirtualQuery
FindVolumeClose
FindClose
WriteFile
HeapCreate
lstrlenA
LocalSize
GetFileType
ExitThread
CreateSemaphoreA
GetModuleFileNameA
GetCommandLineA
CloseHandle
GetDriveTypeA

uxtheme

GetThemeEnumValue
DrawThemeEdge
GetThemeTextMetrics
GetThemeTextExtent
IsThemeActive
GetThemeColor
DrawThemeBackground
SetWindowTheme
GetWindowTheme
CloseThemeData
CloseThemeData
GetThemeBool
OpenThemeData

fltlib

FilterClose
FilterClose
FilterClose
FilterClose

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy