6b3da853d71971e0d25af90c0c4f9615e645db2f547a023e4e77dd1d551b78b8 | Triage

Submit
Reports

Overview

overview

Static

static

6b3da853d7...b8.exe

windows7-x64

6b3da853d7...b8.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6b3da853d71971e0d25af90c0c4f9615e645db2f547a023e4e77dd1d551b78b8.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

6b3da853d71971e0d25af90c0c4f9615e645db2f547a023e4e77dd1d551b78b8.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6b3da853d71971e0d25af90c0c4f9615e645db2f547a023e4e77dd1d551b78b8
Size

199KB
MD5

8cb62a156971ce47e5240a25932faa45
SHA1

29519ab6377f6dda653f5a06b57d0bef90e71163
SHA256

6b3da853d71971e0d25af90c0c4f9615e645db2f547a023e4e77dd1d551b78b8
SHA512

deb05bd443cb5665d8b4588af86521d0835be6b3e79730e69a910ad1868e79b8eaafb0746d637a0dfade0b7fe996ad84171af00aa9c29bd3c5dd50ec5433a6d7
SSDEEP

3072:mk+Hn2oM3TUULfoAGrLGBgNGGoJKG7ERRbuemXhJGTr5cxXgj2:OnhM3BoHpoGoJKzRg1EcxQq

Score

N/A

Malware Config

Signatures

Files

6b3da853d71971e0d25af90c0c4f9615e645db2f547a023e4e77dd1d551b78b8
.exe windows x86

97df7fc69b37b4eec7efe0f0a19f2d6b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
VirtualQuery
GetFileAttributesA
IsBadReadPtr
LocalSize
CreateDirectoryA
FindClose
GetCurrentThreadId
CloseHandle
GetModuleHandleA
CreateSemaphoreA
WriteFile
CancelIo
lstrlenA
WaitForMultipleObjects
GetDriveTypeA
GetFileType
FindVolumeClose
GetFileTime
GetCurrentDirectoryW
HeapCreate
GetCommandLineA
HeapFree
GetModuleFileNameA
FindVolumeClose

uxtheme

CloseThemeData
GetThemeColor
DrawThemeBackground
IsThemeActive
CloseThemeData
OpenThemeData
GetWindowTheme
GetThemeBool
SetWindowTheme
GetThemeTextExtent
DrawThemeEdge
GetThemeSysSize
GetThemeTextMetrics

fmifs

Extend
Extend
Extend
Extend

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy