06dc2a02852e9faa238fc9f02b49e8dce03eb89d2d58eae2c1a573968b28f210 | Triage

Submit
Reports

Overview

overview

Static

static

06dc2a0285...10.exe

windows7-x64

06dc2a0285...10.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

06dc2a02852e9faa238fc9f02b49e8dce03eb89d2d58eae2c1a573968b28f210.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

06dc2a02852e9faa238fc9f02b49e8dce03eb89d2d58eae2c1a573968b28f210.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

06dc2a02852e9faa238fc9f02b49e8dce03eb89d2d58eae2c1a573968b28f210
Size

64KB
MD5

b5d6c10257bcacf6335fc5598bc5aec2
SHA1

4148f5abf30693b42cd165de350b09aa634325d8
SHA256

06dc2a02852e9faa238fc9f02b49e8dce03eb89d2d58eae2c1a573968b28f210
SHA512

7fadce2a03a20236d23b523ca44bd67e5c100ba376f86c4090abfec15fe7fe196aa81662f08ce20edc3d74ec74d5f940fbc5f863b2c5a4d1ab530ac63c553833
SSDEEP

1536:MNBuVgHSDqJyXXuuBAW67Kbjl9jLLYje:MNBSDhHtBAIR9jLLYje

Score

N/A

Malware Config

Signatures

Files

06dc2a02852e9faa238fc9f02b49e8dce03eb89d2d58eae2c1a573968b28f210
.exe windows x86

a2da6ce4068973a71d69cb6a88801571

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
Heap32First
lstrcmpA
GetModuleHandleW
lstrcpyW
LoadLibraryA
InterlockedIncrement
SetEnvironmentVariableA
GetStringTypeW
Sleep
GetPrivateProfileSectionA
GetLongPathNameA
GetPrivateProfileIntA
WaitForSingleObject
ReadFileEx
GetDiskFreeSpaceW
GetDiskFreeSpaceW
FindResourceW
GetPrivateProfileIntA
InterlockedDecrement
GetExitCodeProcess
HeapCreate
GetLogicalDrives

apphelp

ApphelpCheckIME
AllowPermLayer
SdbCreateMsiTransformFile
ApphelpCheckExe

clbcatq

SetupOpen
ComPlusMigrate
SetupOpen
SetSetupSave
SetupOpen
DllGetClassObject
CheckMemoryGates
CheckMemoryGates
ComPlusMigrate
SetSetupSave
ComPlusMigrate
DllGetClassObject
CheckMemoryGates

version

VerFindFileA

Sections

.text
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy