ed254f56084bb8624b213819ee95deef636287a02f8f2efb50f403a18566fb1c | Triage

Submit
Reports

Overview

overview

8

Static

static

ed254f5608...1c.exe

windows7-x64

8

ed254f5608...1c.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ed254f56084bb8624b213819ee95deef636287a02f8f2efb50f403a18566fb1c.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ed254f56084bb8624b213819ee95deef636287a02f8f2efb50f403a18566fb1c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ed254f56084bb8624b213819ee95deef636287a02f8f2efb50f403a18566fb1c
Size

311KB
MD5

6db39fa83414f721acdf003ad5239300
SHA1

24344542a78b8c56d52b08a1bed7c67fefdb43cb
SHA256

ed254f56084bb8624b213819ee95deef636287a02f8f2efb50f403a18566fb1c
SHA512

15044422aaaf6366235df63092dd740b1a5d8926b623fd704233b2a487494495ef1ee9fea15c8accbf16ead700ef3df961e59f0b8bcb1af26ffb67875bd1c86d
SSDEEP

6144:BSLgt42RTtXjj14uSc0Ge4e9G9HWDVaL94BETjYuvGXl0ouRDu:cLgtnRTtXjj1Xve99kF2hCZ

Score

N/A

Malware Config

Signatures

Files

ed254f56084bb8624b213819ee95deef636287a02f8f2efb50f403a18566fb1c
.exe windows x86

0c261a64e915e6f7d5ed5b4afb6a8e24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentProcess
GetStringTypeA
GetCurrentThread
LocalLock
DeviceIoControl
GetPrivateProfileSectionA
VirtualProtectEx
DeviceIoControl
CreateEventW
GetDriveTypeA
lstrlenA
GetStdHandle
CloseHandle
OpenMutexA
HeapDestroy
GetFileAttributesA
LoadLibraryA
GetPrivateProfileIntW
HeapFree
FindVolumeClose
DeleteFileA

uxtheme

GetThemeTextMetrics
IsThemeActive
SetWindowTheme
GetThemeTextExtent
GetWindowTheme
DrawThemeEdge
GetThemeColor
GetThemeBool
GetThemeSysSize
CloseThemeData
CloseThemeData
DrawThemeBackground
OpenThemeData

odbccp32

SQLGetAvailableDrivers
SQLInstallODBC
SQLConfigDataSource
SQLInstallDriver

msasn1

ASN1BERDecBool

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy