6865040b84c1fe965d43a6ebb2e4cbbc1ee3ba9d9c8f96aaf1ff0843098f0180 | Triage

Submit
Reports

Overview

overview

8

Static

static

6865040b84...80.exe

windows7-x64

8

6865040b84...80.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6865040b84c1fe965d43a6ebb2e4cbbc1ee3ba9d9c8f96aaf1ff0843098f0180.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

6865040b84c1fe965d43a6ebb2e4cbbc1ee3ba9d9c8f96aaf1ff0843098f0180.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

6865040b84c1fe965d43a6ebb2e4cbbc1ee3ba9d9c8f96aaf1ff0843098f0180
Size

746KB
MD5

732606e45142860dbf501e4931db1532
SHA1

2c83b4a5c2818d8754d2c6eac60913c2fc382d4b
SHA256

6865040b84c1fe965d43a6ebb2e4cbbc1ee3ba9d9c8f96aaf1ff0843098f0180
SHA512

f7b23f011e0bf9772a6791b9209e56c46c25c60d27f4dc8766f4e34ebc6da1c83d8d164a7ba7dae0b1ca4fbd7e862ab7c497172c72a4787126f389ce2610d77a
SSDEEP

12288:ONFBTLnJxwkcujdOAgl5IHkdlazS1jXvUQLuqGIwonqlehvYHakX2SVVhiYl:qDtcgMAgFbazS1j81FowiArwYl

Score

N/A

Malware Config

Signatures

Files

6865040b84c1fe965d43a6ebb2e4cbbc1ee3ba9d9c8f96aaf1ff0843098f0180
.exe windows x86

a86e0ddd41d89a7f208862fd58bfea45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
IsBadReadPtr
GetFileAttributesA
GetFileType
LocalSize
SetFileAttributesW
CloseHandle
MapViewOfFile
HeapFree
EnterCriticalSection
FindVolumeClose
GetModuleHandleA
GetEnvironmentVariableW
GetCommandLineA
GetCommandLineW
GetDriveTypeA
GetCurrentDirectoryW
GlobalLock
GetFileTime
WaitForMultipleObjects
lstrlenA
ExitThread
HeapCreate
FindVolumeClose
ReadFile

uxtheme

GetThemeTextExtent
CloseThemeData
GetThemeEnumValue
CloseThemeData
GetThemeTextMetrics
GetThemeColor
OpenThemeData
GetThemeBool
DrawThemeBackground
IsThemeActive
DrawThemeEdge
GetWindowTheme
SetWindowTheme

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy