efedeb8e1c53e5ee34d0a07cbf3a18ab56dd507ee20efafd905f6f9689594932 | Triage

Submit
Reports

Overview

overview

1

Static

static

efedeb8e1c...32.exe

windows7-x64

efedeb8e1c...32.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

efedeb8e1c53e5ee34d0a07cbf3a18ab56dd507ee20efafd905f6f9689594932.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

efedeb8e1c53e5ee34d0a07cbf3a18ab56dd507ee20efafd905f6f9689594932.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

efedeb8e1c53e5ee34d0a07cbf3a18ab56dd507ee20efafd905f6f9689594932
Size

905KB
MD5

06d4a6ccf9e62e49252be2eb503a25ee
SHA1

50d9ba8b104ed82bb5aa57ad99c6e8b8e9c0f4be
SHA256

efedeb8e1c53e5ee34d0a07cbf3a18ab56dd507ee20efafd905f6f9689594932
SHA512

061bfea992ce461d4a5f1eb00799e47e70a76cccb1894df554fae05e7777e2f5e138430e52bd09e5d88ca7455cc5dd82f0533a9a1da4bcd0c45becebee1ea0b7
SSDEEP

24576:dtshfzZtLuJtKIQZi6SuGeYNdLbWH0oSHZqYL:dix/aJr5eYNtWH/xY

Score

N/A

Malware Config

Signatures

Files

efedeb8e1c53e5ee34d0a07cbf3a18ab56dd507ee20efafd905f6f9689594932
.exe windows x86

1b8aceed3856125fe95d966e28158ee9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

MmBuildMdlForNonPagedPool
IoAllocateMdl
MmProbeAndLockPages
MmMapLockedPagesSpecifyCache
MmUnlockPages
IoFreeMdl
ExAllocatePool
ExFreePool
NtQuerySystemInformation

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx0
Size: 1024B - Virtual size: 628B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.upx1
Size: 847KB - Virtual size: 846KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx2
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy