eaf4177afa48b78e6f18fad36450c21af4e367b3225c995189d0999d8a60f33f | Triage

Submit
Reports

Overview

overview

3

Static

static

eaf4177afa...3f.exe

windows7-x64

3

eaf4177afa...3f.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

eaf4177afa48b78e6f18fad36450c21af4e367b3225c995189d0999d8a60f33f.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

eaf4177afa48b78e6f18fad36450c21af4e367b3225c995189d0999d8a60f33f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

eaf4177afa48b78e6f18fad36450c21af4e367b3225c995189d0999d8a60f33f
Size

92KB
MD5

6f76882ca758143e64188dbeb03a5a21
SHA1

674a544f428058b0ba625698c1c785853d50e89d
SHA256

eaf4177afa48b78e6f18fad36450c21af4e367b3225c995189d0999d8a60f33f
SHA512

55ba665a878d8707b022ff2fa7ea4ed9dcc4eb1ab9853e6e8ec5e4436b97d0526ecaec6364f1e758b96e0a24b467a1d2e3d4a9f19045f42ee21b4e9b3b687b11
SSDEEP

1536:HuZsmnn1XWiDcjLNbAZzL5/b1eq/WcReEjIDizIQPlvv4QOrSG:osA1XWIcjhAT/bcVdEEDizIQ9HJOrl

Score

N/A

Malware Config

Signatures

Files

eaf4177afa48b78e6f18fad36450c21af4e367b3225c995189d0999d8a60f33f
.exe windows x86

8e87a0895d7bea79fa991b3a80516a14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
ResumeThread
GetVolumePathNameA
ReadConsoleOutputCharacterA
ReadProcessMemory
lstrcpyn
GetConsoleCommandHistoryA
TlsFree
GetStartupInfoA
BindIoCompletionCallback
QueryPerformanceCounter
InitializeCriticalSection
GetCommProperties
GetNumberFormatA
GetPrivateProfileSectionNamesA
FindClose
UpdateResourceA
LocalHandle
InterlockedDecrement
VirtualLock
SetTapePosition
GetConsoleOutputCP
GetCommandLineA
GetStartupInfoA
ExitProcess

ntdll

RtlZeroHeap
vsprintf
NtLockFile
strstr
NtReplaceKey

Sections

.edata
Size: 4KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIjunli
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy