1ef1ff8b1e81815d13bdd293554ddf8b3e57490dd3ef4add7c2837ddc67f9c24[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1ef1ff8b1e...24.exe

windows7_x64

1ef1ff8b1e...24.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1ef1ff8b1e81815d13bdd293554ddf8b3e57490dd3ef4add7c2837ddc67f9c24.exe

Resource

win7-20220414-en

conti ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1ef1ff8b1e81815d13bdd293554ddf8b3e57490dd3ef4add7c2837ddc67f9c24.exe

Resource

win10v2004-20220414-en

conti ransomware

windows10-2004_x64

0 signatures

0 seconds

General

Target

1ef1ff8b1e81815d13bdd293554ddf8b3e57490dd3ef4add7c2837ddc67f9c24.exe
Size

101KB
MD5

42e106fd843b0e3585057c30424f695a
SHA1

7b7f0c029a3dcb34a7a448f05b43c5657dd0c471
SHA256

1ef1ff8b1e81815d13bdd293554ddf8b3e57490dd3ef4add7c2837ddc67f9c24
SHA512

70acd1c36f44bfa4bb6c4dbf40275e2d508e5a610117de2835435a95950549b33c89b012ea3772c85d6189ee06b575bbe193cbe0aa8fb1a8ad9f4a20192e0ae8
SSDEEP

1536:4zkzMy2546PtngS719+T0gdGpwW2XtaJp7fd8OUfB4VH9qNwpWQV:xX2C29+4g8wW2XtO7l8OUGx9qNwpF

Score

N/A

Malware Config

Signatures

Files

1ef1ff8b1e81815d13bdd293554ddf8b3e57490dd3ef4add7c2837ddc67f9c24.exe
.exe windows x86

30fe3f044289487cddc09bfb16ee1fde

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrIA

kernel32

GetCommandLineW
lstrcpyA
LoadLibraryA
GetProcAddress
lstrcmpiW
CreateMutexA
ReleaseMutex
MultiByteToWideChar
CloseHandle

shell32

CommandLineToArgvW

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy