66ce7b3791a1bc75509ff3c51d1f55d6108381a06c833ecd965d889c15135289 | Triage

Submit
Reports

Overview

overview

Static

static

66ce7b3791...89.exe

windows7-x64

66ce7b3791...89.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

66ce7b3791a1bc75509ff3c51d1f55d6108381a06c833ecd965d889c15135289.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

66ce7b3791a1bc75509ff3c51d1f55d6108381a06c833ecd965d889c15135289.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

66ce7b3791a1bc75509ff3c51d1f55d6108381a06c833ecd965d889c15135289
Size

199KB
MD5

05b5ef52c2fd2b85c58e675bf6aedbac
SHA1

889a60bf3b62ade1692b7a2ce9ff50b487eeab31
SHA256

66ce7b3791a1bc75509ff3c51d1f55d6108381a06c833ecd965d889c15135289
SHA512

220e9433aa71f004dbbaa08a835414215932abb7759a96292d66e51c474e24e9798d704fa904d5f756904a1c834893594cddabb6f182a2e4dd311a74ae5a8500
SSDEEP

3072:Rk+Hn2oM3TUULfoAGrLGBgNGGoJKG7ERRbuemXhJGTr5cxXgjZ:TnhM3BoHpoGoJKzRg1EcxQV

Score

N/A

Malware Config

Signatures

Files

66ce7b3791a1bc75509ff3c51d1f55d6108381a06c833ecd965d889c15135289
.exe windows x86

3ea8583efb9bd4ea00ab0ae2cfdeec75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindVolumeClose
GetFileTime
GetCommandLineA
CreateSemaphoreA
GetFileType
lstrlenA
GetProcessHeap
LocalSize
FindVolumeClose
HeapCreate
GetCurrentDirectoryW
ExitThread
WaitForMultipleObjects
HeapFree
CreateDirectoryA
VirtualQuery
GetModuleFileNameA
IsBadReadPtr
CancelIo
GetDriveTypeA
GetFileAttributesA
GetModuleHandleA
WriteFile
CloseHandle
FindClose

uxtheme

CloseThemeData
GetThemeTextMetrics
GetThemeBool
DrawThemeBackground
IsThemeActive
GetThemeColor
GetWindowTheme
GetThemeTextExtent
CloseThemeData
DrawThemeEdge
SetWindowTheme
GetThemeEnumValue
OpenThemeData

fmifs

Extend
Extend
Extend
Extend

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy