3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242 | Triage

Submit
Reports

Overview

overview

Static

static

3e8d77dd02...42.exe

windows7_x64

3e8d77dd02...42.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242.exe

Resource

win7-20220414-en

dridex botnet loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242.exe

Resource

win10v2004-20220414-en

dridex botnet loader

windows10-2004_x64

0 signatures

0 seconds

General

Target

3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242
Size

216KB
MD5

a597ba3b363b2362c3f7e6d35e72c6e7
SHA1

c2ca5bf1396673c28de6b8bcf971f0a0354b4f04
SHA256

3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242
SHA512

c267fdb749a3c3a2a6cf9c6a708219fdecf4cf2e946678460860c985da9803e5a5dc9f028fe2ea406c9e435f0f89ee10c1142c5576bc74c6d74f6e5b4e921010
SSDEEP

6144:YafOeo45t9XWHQnmOshwm+piB6c5jb1Iu:Ya5oCRWHQnmOaS46c5n1

Score

N/A

Malware Config

Signatures

Files

3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242
.exe windows x86

6027638a9215bf2c02a18bfb0ff91525

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegSetKeySecurity

shlwapi

PathIsRootA

netapi32

NetGroupAddUser

kernel32

GetVersion
SetPriorityClass
HeapDestroy
AreFileApisANSI
GetSystemTimes
IsProcessorFeaturePresent
GetConsoleDisplayMode
GetModuleHandleW

winmm

timeBeginPeriod

user32

GetFocus
DestroyWindow
SetCaretPos
GetKBCodePage
GetMenuState
GetTopWindow
LoadCursorW

oleaut32

VarI8FromR4

esent

JetRetrieveColumns

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 886B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

qnWSV
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

AJGT
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy