26d5725f7b9028b03df9cd6bbbb08fbbb78d909d5f8f3b6fe923285dce6a25b0 | Triage

Submit
Reports

Overview

overview

Static

static

26d5725f7b...b0.exe

windows7_x64

26d5725f7b...b0.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

26d5725f7b9028b03df9cd6bbbb08fbbb78d909d5f8f3b6fe923285dce6a25b0.exe

Resource

win7-20220414-en

emotet banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

26d5725f7b9028b03df9cd6bbbb08fbbb78d909d5f8f3b6fe923285dce6a25b0.exe

Resource

win10v2004-20220414-en

emotet banker trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

26d5725f7b9028b03df9cd6bbbb08fbbb78d909d5f8f3b6fe923285dce6a25b0
Size

176KB
MD5

38fdcd01a740f20a6ce85702ef490d0c
SHA1

ecb7f6563f75172ed8c8e1e57045418a6bee0481
SHA256

26d5725f7b9028b03df9cd6bbbb08fbbb78d909d5f8f3b6fe923285dce6a25b0
SHA512

b3debc0fe45a00332fb523767be212282a77b791f5bf07290116768614900750ef632401471984c658e994624b66a01fdac4bb5c7696bc7ee0190c35e42f9954
SSDEEP

1536:aTIK04lYqH0dLMgD+74kRSNOFjom1YeZ0oh7IiO69vvON2q:aMZoUas+HSNtSWoFIi0D

Score

N/A

Malware Config

Signatures

Files

26d5725f7b9028b03df9cd6bbbb08fbbb78d909d5f8f3b6fe923285dce6a25b0
.exe windows x86

1d0da2d83693387233704163b29ec749

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM

Imports

oleaut32

VarBstrFromCy
VarCyCmp
SafeArrayCreateVectorEx

shlwapi

SHQueryInfoKeyW

comctl32

PropertySheetW
ImageList_GetImageInfo

ntdsapi

DsMapSchemaGuidsW

kernel32

lstrlenA
GetCurrentProcess
lstrcatA
ReadProcessMemory
GetFileAttributesA
GetWindowsDirectoryA
WaitNamedPipeA
GetModuleHandleW

lz32

LZInit

setupapi

CM_Disable_DevNode

crypt32

CryptMsgVerifyCountersignatureEncodedEx

rpcrt4

RpcBindingInqAuthInfoA
NdrInterfacePointerBufferSize

shell32

SHGetInstanceExplorer

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

EJf-ov
Size: 144KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.CRT
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy