b4f2776433f427aff8991684b98a3e017d9731ac43fd12b6ba4a1eff84a5f464 | Triage

Submit
Reports

Overview

overview

Static

static

b4f2776433...64.exe

windows7-x64

b4f2776433...64.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b4f2776433f427aff8991684b98a3e017d9731ac43fd12b6ba4a1eff84a5f464.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

b4f2776433f427aff8991684b98a3e017d9731ac43fd12b6ba4a1eff84a5f464.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b4f2776433f427aff8991684b98a3e017d9731ac43fd12b6ba4a1eff84a5f464
Size

198KB
MD5

221d8092c96284231a2ded67d5363e57
SHA1

677eb0ba989afbe34b533b9037d6c185b133b1b0
SHA256

b4f2776433f427aff8991684b98a3e017d9731ac43fd12b6ba4a1eff84a5f464
SHA512

6e46342aab2e866b24d27c38436e089acdd50eab5dc8d45cd1d7230ac2f8e62af54614cc65e2b80a940448a0157ecd8708a76d7728288b703d3c066598b78e41
SSDEEP

6144:v2GT2VIKU3MchZ5ODUfK2ePXcBSxJXLyM01VPNPRZ0:pTsIKgVjUQK2uLSnNR6

Score

N/A

Malware Config

Signatures

Files

b4f2776433f427aff8991684b98a3e017d9731ac43fd12b6ba4a1eff84a5f464
.exe windows x86

6aba819d55d4a533e866788d5081d774

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
WaitForSingleObject
CloseHandle
SetEndOfFile
CreateFileA
IsBadReadPtr
EnterCriticalSection
FindAtomW
GetFileAttributesA
GetCurrentDirectoryA
RemoveDirectoryA
VirtualAlloc
GetVersion
SetLastError
SetFileAttributesW
GetFileSize
SuspendThread
Sleep
GetCommandLineA
GetEnvironmentVariableA
DeleteFileW
ExitProcess
HeapSize
ReadFile
SetLastError

cryptui

LocalEnroll
DllRegisterServer
CryptUIWizDigitalSign
CryptUIWizExport
CryptUIDlgSelectStoreA
CryptUIWizBuildCTL
CryptUIDlgFreeCAContext
LocalEnrollNoDS
CryptUIDlgFreeCAContext
CryptUIDlgViewContext
CryptUIWizImport
DllUnregisterServer
CryptUIDlgFreeCAContext

cmpbk32

PhoneBookFreeFilter
PhoneBookFreeFilter
PhoneBookFreeFilter
PhoneBookFreeFilter

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy