d6c2ed27fdf6392cc641e9b423bc1d4cc2b42e3a41ada73640dd8bd52ed2afb2 | Triage

Submit
Reports

Overview

overview

1

Static

static

d6c2ed27fd...b2.exe

windows7-x64

1

d6c2ed27fd...b2.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d6c2ed27fdf6392cc641e9b423bc1d4cc2b42e3a41ada73640dd8bd52ed2afb2.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d6c2ed27fdf6392cc641e9b423bc1d4cc2b42e3a41ada73640dd8bd52ed2afb2.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d6c2ed27fdf6392cc641e9b423bc1d4cc2b42e3a41ada73640dd8bd52ed2afb2
Size

46KB
MD5

dde51b7649d1c1b3ea46edd0886bca00
SHA1

0589fc15e6c2cc94caeab949bfbf0d22b24a8c51
SHA256

d6c2ed27fdf6392cc641e9b423bc1d4cc2b42e3a41ada73640dd8bd52ed2afb2
SHA512

38f4b05486fb35c40a6292b495faa8d50f405cfa9f641cf1311dae00e1a70a72811f21365ed59e24554287e47d216e3154423e1685326f0462df619a7e1cc058
SSDEEP

768:vu8Vs05uVS0cjTgrxIr6Sc9R+ZZbC3+5QeUOAsZZqtue8SWLlj0JUwA7b:TUVcjTgVI+PCZbCuWBRaZfrb

Score

N/A

Malware Config

Signatures

Files

d6c2ed27fdf6392cc641e9b423bc1d4cc2b42e3a41ada73640dd8bd52ed2afb2
.exe windows x86

7b30ea253bf2c899fc32d9d9f094a414

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winipsec

SetMMAuthMethods
DeleteMMFilter
EnumMMPolicies
EnumTransportFilters
CloseTunnelFilterHandle

kernel32

SetFileApisToANSI
GetOEMCP
SetThreadUILanguage
GetUserDefaultLCID
DeleteFileW
CreateFileMappingA
GetSystemTimeAsFileTime
IsBadCodePtr
GetFileInformationByHandle
LoadLibraryA
CreateActCtxA
IsDebuggerPresent
GetConsoleCharType

shlwapi

PathIsDirectoryA
PathRemoveBackslashW
PathFindExtensionW
HashData
StrChrIW
SHRegQueryUSValueW
UrlCanonicalizeW
StrCSpnIA
PathCanonicalizeA
PathRelativePathToW
PathFindFileNameW
PathAddBackslashW
StrFormatByteSizeW

atl

AtlFreeMarshalStream
AtlModuleRegisterTypeLib
AtlWaitWithMessageLoop
AtlModuleUnregisterServerEx

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy