57eace51e07a28334216d67cd2c4f75a66ee2d6f5cb03d836fa8661bc5c1e5e6 | Triage

Submit
Reports

Overview

overview

1

Static

static

57eace51e0...e6.exe

windows7-x64

57eace51e0...e6.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

57eace51e07a28334216d67cd2c4f75a66ee2d6f5cb03d836fa8661bc5c1e5e6.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

57eace51e07a28334216d67cd2c4f75a66ee2d6f5cb03d836fa8661bc5c1e5e6.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

57eace51e07a28334216d67cd2c4f75a66ee2d6f5cb03d836fa8661bc5c1e5e6
Size

15KB
MD5

ae1d64eba8470480abb64b57e44be82f
SHA1

2fe7133615e35a562958d522717ba8c596a4a9b7
SHA256

57eace51e07a28334216d67cd2c4f75a66ee2d6f5cb03d836fa8661bc5c1e5e6
SHA512

ce763af48b58e879852f0f5174b17960e6a5d98c59d4fddeaf5e346c4fec58349a118ad0b72d924e3bbf4f712c577e82ce04fd844013a8102d2e6f8c11d03272
SSDEEP

192:O+lyJ9FUU0zVki8zyRnzAE2r3Jk8+W8+1vKoRZO8R5n0jYDVkkGizZQr:llyXFSzV7RnUE2rRdMN8gjYDVQiyr

Score

N/A

Malware Config

Signatures

Files

57eace51e07a28334216d67cd2c4f75a66ee2d6f5cb03d836fa8661bc5c1e5e6
.exe windows x86

7007e039b163c1e98f57c7b9bdc25122

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
WriteFile
GetExitCodeProcess
GlobalFree
GetACP
GetEnvironmentVariableW
GetCommandLineA
VirtualAlloc
CreateMutexA
GetPrivateProfileIntW
InterlockedExchange
ResetEvent
lstrlenA
LocalFree
ResumeThread
GlobalSize
CreateEventA
FindVolumeClose
GetStdHandle
CloseHandle

advapi32

RegCreateKeyExW
ControlService
IsTextUnicode
ClearEventLogA
RegQueryValueW
CreateServiceA
IsValidSid
RegCloseKey
CloseEventLog
RegDeleteKeyA
IsValidAcl
RegEnumKeyW
RegDeleteValueA

admparse

ResetAdmDirtyFlag
ResetAdmDirtyFlag
AdmClose
ResetAdmDirtyFlag
ResetAdmDirtyFlag

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 370KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy