effbde189c73675c273c774543ce064a7115c96c717f0819013b1b2731329ab3 | Triage

Submit
Reports

Overview

overview

1

Static

static

effbde189c...b3.exe

windows7-x64

1

effbde189c...b3.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

effbde189c73675c273c774543ce064a7115c96c717f0819013b1b2731329ab3.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

effbde189c73675c273c774543ce064a7115c96c717f0819013b1b2731329ab3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

effbde189c73675c273c774543ce064a7115c96c717f0819013b1b2731329ab3
Size

2.5MB
MD5

7a52d3849dfd50f583848c20d2218501
SHA1

819ef321c0673009834f54eceac83f2134e69b34
SHA256

effbde189c73675c273c774543ce064a7115c96c717f0819013b1b2731329ab3
SHA512

913708dd13c72d61ed1189838688dc886ff1dd793d802ec51346d8e4dbb663ec4695cac27e3bc363319f8f536d77d0dcd27b29c25736ee23641faf3505db5e73
SSDEEP

49152:2b+0JveirED5TE7SsoxysGBhSKYkENTrdXY:2n4

Score

N/A

Malware Config

Signatures

Files

effbde189c73675c273c774543ce064a7115c96c717f0819013b1b2731329ab3
.exe windows x86

bb4fcb74522401d7d4f9fa86f974ab9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
LCMapStringW
GetCurrentThreadId
HeapAlloc
GetCurrentDirectoryW
CreateMutexW
GetCPInfo
SetFileAttributesA
ExitProcess
lstrcpyW
GetOEMCP
GetProcAddress
GetLastError
GetProcessHeap
GetCommandLineA
SetLastError
VirtualProtect
GetCurrentProcessId
GetStartupInfoA
GetLocaleInfoW
InterlockedIncrement
SetConsoleCP
SetStdHandle
InitializeCriticalSection
GetTickCount
GetACP
MultiByteToWideChar
GetWindowsDirectoryW
IsBadReadPtr
GetCurrentProcess
DisableThreadLibraryCalls
GetDateFormatA
GetModuleHandleA

lz32

LZDone

user32

GetFocus
GetClientRect
DispatchMessageA
GetParent

gdi32

SelectObject
SetBrushOrgEx

msvcrt

_vsnwprintf

advapi32

RegQueryValueExA

ole32

CoMarshalHresult

Sections

.text
Size: 533KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy