50c589e1e15f690ce878992412833f3d7a285b84fc9aa5368de8e3c5cbb67527 | Triage

Submit
Reports

Overview

overview

Static

static

50c589e1e1...27.exe

windows7-x64

50c589e1e1...27.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

50c589e1e15f690ce878992412833f3d7a285b84fc9aa5368de8e3c5cbb67527.exe

Resource

win7-20220715-en

teslacrypt persistence ransomware spyware stealer suricata

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

50c589e1e15f690ce878992412833f3d7a285b84fc9aa5368de8e3c5cbb67527.exe

Resource

win10v2004-20220718-en

teslacrypt persistence ransomware spyware stealer suricata

windows10-2004-x64

21 signatures

150 seconds

General

Target

50c589e1e15f690ce878992412833f3d7a285b84fc9aa5368de8e3c5cbb67527
Size

360KB
MD5

0bd22f21ea62a05c10a526c38a3cfd8b
SHA1

92eeeebb751c2224a06d88919bb07db3932adf2d
SHA256

50c589e1e15f690ce878992412833f3d7a285b84fc9aa5368de8e3c5cbb67527
SHA512

8444654a4ee46ebfc4bfac1305324440bc249d093f21bc34b3aa2adf75fce778a23e6e72a45a90ced6a33adb7ea57eac4b7d11b6f060d37d887dffa90b0da549
SSDEEP

6144:3dm3S6zJVze75l3XnM++GvyNFi/kF3O+U7rGhYMTdiUF/6:t6KnZKN0MMLruYMTdi8/6

Score

N/A

Malware Config

Signatures

Files

50c589e1e15f690ce878992412833f3d7a285b84fc9aa5368de8e3c5cbb67527
.exe windows x86

b34f437b6d98b5adb2247709875bf81f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

MapViewOfFile
TerminateProcess
OpenFileMappingW
CreateThread
GetProcAddress
UnhandledExceptionFilter
CreateEventW
LocalAlloc
UnmapViewOfFile
GetCurrentThreadId
GetNumberFormatW
GetCurrentProcessId
GetLastError
SetEvent
FreeLibrary
GetModuleHandleA
GetExitCodeProcess
VirtualProtect
VirtualQuery
GetCommandLineW
lstrlenW
FreeConsole

pdh

PdhReadRawLogRecord

msvcrt

memcpy

user32

GetClassNameA
GetShellWindow

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

O_8!Iz
Size: 148KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 148KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy