222e2c1e3ad219e24f2a4362a5a0d5d269f23d84c5b85632e171401b70b01346 | Triage

Submit
Reports

Overview

overview

Static

static

222e2c1e3a...46.exe

windows7-x64

222e2c1e3a...46.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

222e2c1e3ad219e24f2a4362a5a0d5d269f23d84c5b85632e171401b70b01346.exe

Resource

win7-20220812-en

teslacrypt persistence ransomware

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

222e2c1e3ad219e24f2a4362a5a0d5d269f23d84c5b85632e171401b70b01346.exe

Resource

win10v2004-20220812-en

teslacrypt persistence ransomware

windows10-2004-x64

12 signatures

150 seconds

General

Target

222e2c1e3ad219e24f2a4362a5a0d5d269f23d84c5b85632e171401b70b01346
Size

360KB
MD5

bb42ac7cdc834ba9abb5b4b90025f022
SHA1

3c75d402cca4de4898ac07888900ee7560b9536e
SHA256

222e2c1e3ad219e24f2a4362a5a0d5d269f23d84c5b85632e171401b70b01346
SHA512

d8ea171111608ddf2d028eec2c1a379e12e2dcd2e54258eb5911108e4f37a71bdf5b51b62599a867fe6d5e219ec79da0765120dc60a92d09f7ee7f2c2e015f0f
SSDEEP

6144:IqZbqZToxIizLBZ6R56VkGM4ceLJ5vs5JGJceO/QCErIiuNAvwu:IqZb8oR3D6R5QHXZJy/Q50imAvB

Score

N/A

Malware Config

Signatures

Files

222e2c1e3ad219e24f2a4362a5a0d5d269f23d84c5b85632e171401b70b01346
.exe windows x86

c00702bdb5e1419c3dc899a74a60a37d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

clusapi

GetClusterResourceKey

msvcrt

memset
memcpy

kernel32

GlobalMemoryStatus
CreateEventW

user32

RemovePropA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

para
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 799B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.erloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy