649896eb46867881c183b1eb261837eebe5ed4aa4d57e23d43717bf1b80b0bdb | Triage

Submit
Reports

Overview

overview

8

Static

static

649896eb46...db.exe

windows7-x64

8

649896eb46...db.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

649896eb46867881c183b1eb261837eebe5ed4aa4d57e23d43717bf1b80b0bdb.exe

Resource

win7-20220901-en

evasion persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

649896eb46867881c183b1eb261837eebe5ed4aa4d57e23d43717bf1b80b0bdb.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

649896eb46867881c183b1eb261837eebe5ed4aa4d57e23d43717bf1b80b0bdb
Size

249KB
MD5

69ec93e7a6b7dfcb092e0f576baeb034
SHA1

8106847b7e99fd38c10581c233d63a55c8f0bb01
SHA256

649896eb46867881c183b1eb261837eebe5ed4aa4d57e23d43717bf1b80b0bdb
SHA512

d48ebf49f7a891f7d45241bc00cb03daa5fca0c615784de009ca54f0c6980835a17704a81451357cee4ff1b934b525b2518faf4055f0ba29442d8ded89614873
SSDEEP

6144:8HaosPOvb27I91wkpzPQ/d45JCxlZd4izCW5rRhg2D:8gPOvb27SJm45OOizCW5ND

Score

N/A

Malware Config

Signatures

Files

649896eb46867881c183b1eb261837eebe5ed4aa4d57e23d43717bf1b80b0bdb
.exe windows x86

ef711a970c3a00f2b76735b09bf5b6a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
HeapDestroy
GetTickCount
ReleaseMutex
GetEnvironmentVariableA
GetSystemInfo
CreateMutexW
FindClose
ResetEvent
SuspendThread
HeapCreate
FindClose
GetStartupInfoW
WaitForSingleObject
CloseHandle
InitializeCriticalSection
GetTickCount
ExitProcess
CreateFileA
GetFileSize
GetCurrentDirectoryA
AddAtomW
HeapSize
DeleteFileA
SetEndOfFile

wininet

DeleteUrlCacheEntryA
FtpGetCurrentDirectoryA
FtpDeleteFileA
FtpPutFileA
DeleteUrlCacheEntryA
HttpEndRequestA
HttpQueryInfoA
FtpCreateDirectoryA
DeleteUrlCacheEntryA
FindCloseUrlCache
FtpOpenFileA
FtpGetFileA
FtpFindFirstFileA

perfos

CloseOSObject
CloseOSObject
CloseOSObject
CloseOSObject

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 243KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy