02f6c0c3608921b4ca643e5e05056b2f4ad21d4c795602a4499e8e69209ac1ef | Triage

Submit
Reports

Overview

overview

8

Static

static

02f6c0c360...ef.exe

windows7-x64

8

02f6c0c360...ef.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

02f6c0c3608921b4ca643e5e05056b2f4ad21d4c795602a4499e8e69209ac1ef.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

02f6c0c3608921b4ca643e5e05056b2f4ad21d4c795602a4499e8e69209ac1ef.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

02f6c0c3608921b4ca643e5e05056b2f4ad21d4c795602a4499e8e69209ac1ef
Size

504KB
MD5

287e9f80e16dd13d3d79d58dc3acf680
SHA1

4d1bed5fdbe65c75f41a08162b9a9eb2496698c1
SHA256

02f6c0c3608921b4ca643e5e05056b2f4ad21d4c795602a4499e8e69209ac1ef
SHA512

8cca50e3a4899129e747baf6aeab7a5ea659476a32c112520f9f1cc8ff13c91dd38185626efcb90eb60a6059d6e51c550a1d30ed53f6c3078d6b9b5c057818d9
SSDEEP

12288:ueCDMx9081tahqyHR/eQ+AsuDUnP6xzK+pToUU+GWt:F9081GqeR/e6rUnyrpTzJGWt

Score

N/A

Malware Config

Signatures

Files

02f6c0c3608921b4ca643e5e05056b2f4ad21d4c795602a4499e8e69209ac1ef
.exe windows x86

010a65957927329b82210c18d3d14447

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextVolumeA
CloseHandle
GetEnvironmentVariableA
CloseHandle
GetFileAttributesW
lstrcmpW
GetModuleHandleA
FindFirstVolumeA
GetVolumePathNameA
GetFullPathNameA
GetConsoleTitleA
GetFullPathNameA
GetModuleHandleW
WaitForMultipleObjects
lstrcmpiW
GetDiskFreeSpaceW
GetCurrentDirectoryA
HeapCreate
ReleaseSemaphore
OpenMutexW
GetConsoleMode
CloseHandle
CreateEventW

certmgr

DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.pack
Size: 495KB - Virtual size: 984KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy