eff829cee83fcef595100cf11fedfc3c1158da4d38fbf1bf5a4f4091875a2e44 | Triage

Submit
Reports

Overview

overview

8

Static

static

eff829cee8...44.exe

windows7-x64

8

eff829cee8...44.exe

windows10-2004-x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

eff829cee83fcef595100cf11fedfc3c1158da4d38fbf1bf5a4f4091875a2e44.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

eff829cee83fcef595100cf11fedfc3c1158da4d38fbf1bf5a4f4091875a2e44.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

eff829cee83fcef595100cf11fedfc3c1158da4d38fbf1bf5a4f4091875a2e44
Size

1.2MB
MD5

32d7837dd2064798da1021fb54704059
SHA1

6fb700bb91b0acebe8fff555b25a39372b3d0e20
SHA256

eff829cee83fcef595100cf11fedfc3c1158da4d38fbf1bf5a4f4091875a2e44
SHA512

a70704402c7f83906e0f84ce64a513204827db3e95bdadcbf4c4a51d51dff77c9b41be095c7a83fbd081b01a43ecd037d5b37ac55b64eed01ca5bfef99ee2557
SSDEEP

24576:MhMBtHz9B8v1EaQb/P9zX+eHk96z/FUym:MqjHz9BwQbn5+eE9AFUy

Score

N/A

Malware Config

Signatures

Files

eff829cee83fcef595100cf11fedfc3c1158da4d38fbf1bf5a4f4091875a2e44
.exe windows x86

8595da71b849de799c45762cd67dadea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

PrintersGetCommand_RunDLLA
DllRegisterServer
DriveType
PathCleanupSpec
ExtractAssociatedIconA
OpenAs_RunDLL
FreeIconList
DAD_DragLeave
DuplicateIcon
InternalExtractIconListA
DllGetClassObject
IsLFNDriveA
GetFileNameFromBrowse
PickIconDlg
PathMakeUniqueName
ILCloneFirst
DAD_DragMove
IsNetDrive
ILFindChild

kernel32

WriteFile
InitializeCriticalSection
GetCurrentProcessId
GetFileTime
CloseHandle
LeaveCriticalSection
VirtualFree
GetProcessHeap
SetFilePointer
ReadFile
CopyFileA
UnmapViewOfFile
WaitForSingleObject
ExitProcess
MapViewOfFile
FileTimeToLocalFileTime
GetCurrentThreadId
EnterCriticalSection
VirtualAlloc
DeleteFileA
CreateFileA
CreateFileMappingA

adsldpc

ADsEncodeBinaryData
ChangeSeparator
BuildADsPathFromLDAPPath2
ADsDeleteAttributeDefinition
ConvertU2TrusteeToSid
ADsSetObjectAttributes
ADsHelperGetCurrentRowMessage
ADsEnumClasses

Sections

.text
Size: 499KB - Virtual size: 499KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrcs
Size: 546KB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy