ebf5782114d6d6e22a51c1e5fe6c32e1bfc8a9f80c05d7f2b8a811594957268d | Triage

Submit
Reports

Overview

overview

1

Static

static

ebf5782114...8d.exe

windows7-x64

ebf5782114...8d.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ebf5782114d6d6e22a51c1e5fe6c32e1bfc8a9f80c05d7f2b8a811594957268d.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ebf5782114d6d6e22a51c1e5fe6c32e1bfc8a9f80c05d7f2b8a811594957268d.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ebf5782114d6d6e22a51c1e5fe6c32e1bfc8a9f80c05d7f2b8a811594957268d
Size

108KB
MD5

71f159ef24f45794afeff2410e8dffd0
SHA1

d24f6c6f5f0f82bdad10e67f9a14b00a2a86335b
SHA256

ebf5782114d6d6e22a51c1e5fe6c32e1bfc8a9f80c05d7f2b8a811594957268d
SHA512

9b6ffa4a81ab155b06b04dc84d246889462e36802db7d103a1c313ac3f06a1156bcbf40105c8625a40f3e8ae3b4af298656749cc5aad55f2db96637f425a760f
SSDEEP

1536:Jzra/oKfN7LQaB0LSSyOv1Xh15JY9+xFf+6H/T:Jw1Z+L51tR15Jg+rL7

Score

N/A

Malware Config

Signatures

Files

ebf5782114d6d6e22a51c1e5fe6c32e1bfc8a9f80c05d7f2b8a811594957268d
.exe windows x86

2d0c357627df948a851273ec4c8172a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
FindClose
GetCurrentDirectoryA
UnmapViewOfFile
CloseHandle
HeapCreate
Sleep
CreateThread
LoadLibraryW
lstrcpyA
GetComputerNameA
LocalFree
GetSystemTime
GetCurrentThreadId
GlobalUnlock
lstrlenA
GetModuleHandleA
PulseEvent
ResetEvent
GetCommandLineA

user32

CreateIcon
GetCaretPos
GetDC
GetDlgItem
FillRect
CreateWindowExA
IsWindow
DrawMenuBar
CallWindowProcA
SetFocus
CheckRadioButton
DispatchMessageA
DrawEdge

cryptui

CryptUIDlgSelectStoreA
CryptUIDlgCertMgr
CryptUIDlgSelectCA
LocalEnroll
WizardFree

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 234KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy