d9ece390440f1de017253025d2ddd38fc0c8cddb3629e73df2ca5cecad05d7d0 | Triage

Submit
Reports

Overview

overview

3

Static

static

d9ece39044...d0.exe

windows7-x64

1

d9ece39044...d0.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d9ece390440f1de017253025d2ddd38fc0c8cddb3629e73df2ca5cecad05d7d0.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d9ece390440f1de017253025d2ddd38fc0c8cddb3629e73df2ca5cecad05d7d0.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d9ece390440f1de017253025d2ddd38fc0c8cddb3629e73df2ca5cecad05d7d0
Size

42KB
MD5

6adeb83c811beb9f1fec229663f74310
SHA1

3d8de8b8b32a57d25b5b087b095948f1f4b30c98
SHA256

d9ece390440f1de017253025d2ddd38fc0c8cddb3629e73df2ca5cecad05d7d0
SHA512

bc10069dd8151e65b4e081d0d6f64cb19174a609fbfedd5e8942efc39762ff2aaba488a5345d7e7518582d8ef61dda98c2b8153e4de2fb344ed55c4bfd401e95
SSDEEP

768:QHogt6fl93VO5wTVJKhFhfqMlx3kf48FRoufO8OBf1RY7Ulc:kogk7JVJKgMltiFRocOvfoUl

Score

N/A

Malware Config

Signatures

Files

d9ece390440f1de017253025d2ddd38fc0c8cddb3629e73df2ca5cecad05d7d0
.exe windows x64

a9fae89beb61097eac0f699e15e76a4f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetLastError
Sleep
LoadLibraryA
HeapCreate
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
ExitProcess
GetProcAddress
GetModuleHandleA
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapSetInformation

ntdll

RtlUnwindEx

newdev

UpdateDriverForPlugAndPlayDevicesW

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jqkzxfr
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy