2ed804b62a00797d5451138a2f0c88fc48c4cbc7da4da7a73414c9ba4e6a12ec | Triage

Submit
Reports

Overview

overview

Static

static

2ed804b62a...ec.exe

windows7_x64

2ed804b62a...ec.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2ed804b62a00797d5451138a2f0c88fc48c4cbc7da4da7a73414c9ba4e6a12ec.exe

Resource

win7-20220414-en

emotet banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2ed804b62a00797d5451138a2f0c88fc48c4cbc7da4da7a73414c9ba4e6a12ec.exe

Resource

win10v2004-20220414-en

emotet banker trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

2ed804b62a00797d5451138a2f0c88fc48c4cbc7da4da7a73414c9ba4e6a12ec
Size

350KB
MD5

61fd6d472d3c6402c1eb5b6d7c121c06
SHA1

01f1e8eaa2c869f307ce544c486dca031c9f69ef
SHA256

2ed804b62a00797d5451138a2f0c88fc48c4cbc7da4da7a73414c9ba4e6a12ec
SHA512

2121705c36bd049c14ad1c730429edff5fa1f0150bc129cb6eddf0f75871b6d507a580f12ee331626b0bada245e893fb1248ee6e1d1bfeeeb046c72b11214890
SSDEEP

3072:W7/BWzdkQRuclBVVFNsPUEmvESZ4RwgbT3K3p:W7+SqhlbVFNHEcYdf

Score

N/A

Malware Config

Signatures

Files

2ed804b62a00797d5451138a2f0c88fc48c4cbc7da4da7a73414c9ba4e6a12ec
.exe windows x86

88a1cc0752799a4e1ed1d53e5e0938c7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeConnect

avifil32

AVIStreamReadFormat

kernel32

GetTimeZoneInformation
GetNamedPipeClientProcessId
GetModuleHandleW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeConsole
GetLogicalDrives
GetStringScripts

advapi32

PrivilegeCheck

shlwapi

StrChrNW

setupapi

SetupDiDestroyDriverInfoList
SetupOpenInfFileA

shell32

SHAddToRecentDocs

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 746B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

c6J|L
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

K9s
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy