c246167ee29664565d69cfce525e07dbbf1b2bd819ba04401b2ee2b9ecc831ba | Triage

Submit
Reports

Overview

overview

Static

static

c246167ee2...ba.exe

windows7-x64

c246167ee2...ba.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c246167ee29664565d69cfce525e07dbbf1b2bd819ba04401b2ee2b9ecc831ba.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

c246167ee29664565d69cfce525e07dbbf1b2bd819ba04401b2ee2b9ecc831ba.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

c246167ee29664565d69cfce525e07dbbf1b2bd819ba04401b2ee2b9ecc831ba
Size

64KB
MD5

44190f47bed97ee2fbbbd85ca3eb47c0
SHA1

81af0fb7c036e2bae67593067067deec80cd0c8e
SHA256

c246167ee29664565d69cfce525e07dbbf1b2bd819ba04401b2ee2b9ecc831ba
SHA512

784a9a5ed10ff9aa332824f994c5ea0f957f7237e6fa9fa74155c3d7022a508e3ce78c13aea410da141f30212abf0605e28af9111dbc1f727a155d6c848144d7
SSDEEP

1536:V6JOFdae/FpQyyyYsWk7Aq/sD9psMUxSOO:VQOFdJ8yY7+AshSO

Score

N/A

Malware Config

Signatures

Files

c246167ee29664565d69cfce525e07dbbf1b2bd819ba04401b2ee2b9ecc831ba
.exe windows x86

789044a1fbeb46cc0ac3e4534b0f833e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFileEx
GetPrivateProfileIntA
GetPrivateProfileSectionA
GetPrivateProfileIntA
GetModuleHandleW
SetEnvironmentVariableA
Sleep
InterlockedDecrement
lstrcmpA
LoadLibraryA
Heap32First
GetLongPathNameA
GetLogicalDrives
HeapCreate
InterlockedIncrement
GetCurrentDirectoryA
GetDiskFreeSpaceW
GetDiskFreeSpaceW
FindResourceW
lstrcpyW
WaitForSingleObject
GetExitCodeProcess
GetStringTypeW

apphelp

SdbCreateMsiTransformFile
ApphelpCheckExe
AllowPermLayer
ApphelpCheckIME

clbcatq

CheckMemoryGates
CheckMemoryGates
SetSetupSave
DllGetClassObject
ComPlusMigrate
DllGetClassObject
SetupOpen
ComPlusMigrate
ComPlusMigrate
CheckMemoryGates
SetupOpen
SetupOpen
SetSetupSave

version

VerFindFileA

Sections

.text
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy