a6235e54da4d26fb52905bb7321ac2931639a4065199d3d063566eac4d65297d | Triage

Submit
Reports

Overview

overview

8

Static

static

a6235e54da...7d.exe

windows7-x64

8

a6235e54da...7d.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a6235e54da4d26fb52905bb7321ac2931639a4065199d3d063566eac4d65297d.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a6235e54da4d26fb52905bb7321ac2931639a4065199d3d063566eac4d65297d.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a6235e54da4d26fb52905bb7321ac2931639a4065199d3d063566eac4d65297d
Size

742KB
MD5

ad2660e498c91d2995646bd195bbbe90
SHA1

85feffda961d8e41201b7ca443da3e7d19a51daa
SHA256

a6235e54da4d26fb52905bb7321ac2931639a4065199d3d063566eac4d65297d
SHA512

9a8efa796571920e759e6e2c9eb4cd7b111fb43e1657c57c32740888e7f3ac2511fe21d624937f18d507f627f53875c398397d72f5d7da286c2670aacb0abfe7
SSDEEP

12288:+vdSB3mctJPcsueUdyFddCXcaM91K8O8G7YdrOqg08n7G62PTuFwEWBSfBLm:2dSZ1t1csuezH5V91ZOh7eOQ8K8wEWBE

Score

N/A

Malware Config

Signatures

Files

a6235e54da4d26fb52905bb7321ac2931639a4065199d3d063566eac4d65297d
.exe windows x86

647e63e7fb4cf574be975d4b7fb1666f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
FindClose
InitializeCriticalSection
HeapSize
GetTickCount
SetFileAttributesA
SetEndOfFile
WaitForSingleObject
GetTickCount
GetModuleHandleA
ExitProcess
DeleteFileA
GetStartupInfoW
GetEnvironmentVariableA
GetCurrentDirectoryA
ResetEvent
HeapDestroy
CreateFileA
HeapCreate
ResumeThread
ReleaseMutex
GetFileSize
AddAtomW
FindClose
CloseHandle

wininet

DeleteUrlCacheEntryA
HttpQueryInfoA
HttpEndRequestA
DeleteUrlCacheEntryA
FtpGetFileA
FtpDeleteFileA
FtpFindFirstFileA
FtpCreateDirectoryA
FtpGetCurrentDirectoryA
FtpOpenFileA
FindCloseUrlCache
FtpPutFileA
DeleteUrlCacheEntryA

qmgrprxy

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 736KB - Virtual size: 735KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy