b2ce5894782d6253861205e976fa705c14c966a0370d19231813a57733ef1988 | Triage

Submit
Reports

Overview

overview

8

Static

static

b2ce589478...88.exe

windows7-x64

8

b2ce589478...88.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b2ce5894782d6253861205e976fa705c14c966a0370d19231813a57733ef1988.exe

Resource

win7-20220812-en

adware persistence stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

b2ce5894782d6253861205e976fa705c14c966a0370d19231813a57733ef1988.exe

Resource

win10v2004-20220901-en

adware persistence stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

b2ce5894782d6253861205e976fa705c14c966a0370d19231813a57733ef1988
Size

174KB
MD5

cb976a417d0c080e4ea79cfa6875b0da
SHA1

341d1d75dc7d640d8124ebcfa8dec8c0f02574fc
SHA256

b2ce5894782d6253861205e976fa705c14c966a0370d19231813a57733ef1988
SHA512

d9ee95e76a5d090c6f5813b8a3c4e567b4210c683a662b3b801d735161c18562c136c2bce49f1ca531991ce25942e3ec47c9c4cf52151f94b370e3b75a339046
SSDEEP

3072:K+lZSEyeNNbSs8SRzJT6xNc+exFbfw5RGW91MkIYMxgWSyDPgwsGLIJn4EJZqHxx:K0yeNNcSRtT6xNcVxFbfw5b91MbYeJDw

Score

N/A

Malware Config

Signatures

Files

b2ce5894782d6253861205e976fa705c14c966a0370d19231813a57733ef1988
.exe windows x86

f9cb13eaf34ee76d9832e3edb319c9e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA
SHGetSpecialFolderPathA

kernel32

lstrcpyA
lstrcatA
WriteFile
Sleep
SizeofResource
LockResource
LoadResource
CloseHandle
CreateFileA
ExitProcess
FindResourceA
GetModuleHandleA

advapi32

RegSetValueExA
RegOpenKeyExA
RegCloseKey

Sections

.text
Size: 1024B - Virtual size: 734B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 542B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy