2ceaff30204fdf866b5c96bd1e7457a8[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

2ceaff3020...a8.exe

windows7-x64

2ceaff3020...a8.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2ceaff30204fdf866b5c96bd1e7457a8.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

2ceaff30204fdf866b5c96bd1e7457a8.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

2ceaff30204fdf866b5c96bd1e7457a8.exe
Size

4.7MB
MD5

2ceaff30204fdf866b5c96bd1e7457a8
SHA1

6cf7da04f33a3ab17fc30e742aa820d6ca03bba8
SHA256

9ff9dd6325e0b9c767c98ef26657a997114e25da41fbca6ad4ce200faeca51d0
SHA512

daba0c9f03c4311838310873d95469ac40061f96586890a5c96c23096b31d05df08ebcb4346bea4fc429f217f3120ae83639867f4d110774e4eeef31cf4d42f6
SSDEEP

98304:csyn4G3rU6e5ReXg5NAbvtKVhxHm/Sae1JfCgKZ0DxHlvOUgm421Tjb2p:S4eQ5NKC+leJrD6UgP

Score

N/A

Malware Config

Signatures

Files

2ceaff30204fdf866b5c96bd1e7457a8.exe
.exe windows x86

9981158f2f31080b4e0d79e9faec2354

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileW
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

CallNextHookEx
CharUpperBuffW

gdi32

CreateCompatibleBitmap

advapi32

CryptAcquireContextA

shell32

ShellExecuteExA

shlwapi

StrToIntA

winmm

waveInPrepareHeader

ws2_32

WSAGetLastError

urlmon

URLDownloadToFileW

gdiplus

GdiplusStartup

wininet

InternetOpenUrlW

Sections

.dyfm
Size: - Virtual size: 336KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.dwft
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vdtx
Size: - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qedc
Size: - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ccdt
Size: - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ucbs
Size: - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.oshr
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brmw
Size: 4.7MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy