6e4e248f49de860523a95442d788821f63e3d9faa77e59f85d05a4d82d73e1a2 | Triage

Submit
Reports

Overview

overview

8

Static

static

6e4e248f49...a2.exe

windows7-x64

8

6e4e248f49...a2.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6e4e248f49de860523a95442d788821f63e3d9faa77e59f85d05a4d82d73e1a2.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

6e4e248f49de860523a95442d788821f63e3d9faa77e59f85d05a4d82d73e1a2.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

6e4e248f49de860523a95442d788821f63e3d9faa77e59f85d05a4d82d73e1a2
Size

502KB
MD5

026532adc9d0879a983d839c8c6b3610
SHA1

e8ee956233fb3d705f51417df84e0bf341050bec
SHA256

6e4e248f49de860523a95442d788821f63e3d9faa77e59f85d05a4d82d73e1a2
SHA512

1b35ad73980ba007a593658c6aeba895aaf5be8864253a218caec3b5f86a4a6ab57aa51d8adc8c8c689e12fa53aafa2a29daae737a5125c39e9abd3dac922920
SSDEEP

12288:ebN/XnX1HNOF1LeQ3jBZnhWZqkQCJ6m4H1Ph1ADO:ebN/XnXDwh3jBZWqbWyHpp

Score

N/A

Malware Config

Signatures

Files

6e4e248f49de860523a95442d788821f63e3d9faa77e59f85d05a4d82d73e1a2
.exe windows x86

b60be73f3c182d64e054da4325b43bd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryW
GetModuleHandleA
GetExitCodeThread
InterlockedExchange
GetPrivateProfileIntW
lstrcmpiW
GetEnvironmentVariableA
GetPrivateProfileSectionW
CloseHandle
OpenMutexA
lstrcmpW
GetFileAttributesA
HeapCreate
GetFullPathNameA
WaitForMultipleObjects
GetDiskFreeSpaceA
CloseHandle
CreateEventA
GetPrivateProfileIntW
CloseHandle
FoldStringA
GetFullPathNameA
GetDiskFreeSpaceA

certmgr

DllUnregisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 495KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy