4e473457ea8eea869cc68754ddc1aca54d0343e912d16276a7ec7da023a16ffe | Triage

Submit
Reports

Overview

overview

Static

static

4e473457ea...fe.exe

windows7-x64

4e473457ea...fe.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4e473457ea8eea869cc68754ddc1aca54d0343e912d16276a7ec7da023a16ffe.exe

Resource

win7-20220718-en

emotet banker trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

4e473457ea8eea869cc68754ddc1aca54d0343e912d16276a7ec7da023a16ffe.exe

Resource

win10v2004-20220718-en

emotet banker trojan

windows10-2004-x64

5 signatures

150 seconds

General

Target

4e473457ea8eea869cc68754ddc1aca54d0343e912d16276a7ec7da023a16ffe
Size

120KB
MD5

7cd51ed7687a080cbf8cb1ce8c809822
SHA1

f5287b9f5ebfc74b63d9d059be5684c8bf05e583
SHA256

4e473457ea8eea869cc68754ddc1aca54d0343e912d16276a7ec7da023a16ffe
SHA512

131ec0c2c25f0a946d16553115fdd6a347b87d73b73b9ee514bfc4148e09249186cc1a64e9931ea0a3b42516fc60f62b7072e1cd5784d78e834b53fd3a73a255
SSDEEP

3072:uZ3IyWTC+hZY/CM4iR29hPu4+XUJjGiPE:uZJcqt4K29pyuzPE

Score

N/A

Malware Config

Signatures

Files

4e473457ea8eea869cc68754ddc1aca54d0343e912d16276a7ec7da023a16ffe
.exe windows x86

174bcdb2f5bf3ed2f4404f6f887364e1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStructW
GetTimeZoneInformation
GetCommMask
lstrcmpA
lstrcatW
FindNextChangeNotification
CreateTimerQueue
FlsGetValue
FlsFree
GlobalDeleteAtom
LoadLibraryExA

urlmon

FaultInIEFeature

secur32

InitializeSecurityContextA
FreeContextBuffer

advapi32

LookupPrivilegeNameA

winscard

SCardLocateCardsW

oleaut32

GetRecordInfoFromGuids

user32

IsWindowUnicode
GetWindowTextA
DestroyAcceleratorTable
GetSystemMetrics
LookupIconIdFromDirectoryEx

rasapi32

RasSetAutodialParamA

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 990B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy