eec3604acc91abae3343db62517ef3a8e9a222b6ef86660ba7b20173dc91ba4d | Triage

Submit
Reports

Overview

overview

Static

static

eec3604acc...4d.exe

windows7-x64

1

eec3604acc...4d.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

eec3604acc91abae3343db62517ef3a8e9a222b6ef86660ba7b20173dc91ba4d.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

10 seconds

Behavioral task

behavioral2

Sample

eec3604acc91abae3343db62517ef3a8e9a222b6ef86660ba7b20173dc91ba4d.exe

Resource

win10v2004-20220901-en

teslacrypt persistence ransomware

windows10-2004-x64

12 signatures

10 seconds

General

Target

eec3604acc91abae3343db62517ef3a8e9a222b6ef86660ba7b20173dc91ba4d
Size

352KB
MD5

7426abca716ab576b667c130dc31c470
SHA1

1e375576e068393dd947462dc16b9b8f685a346a
SHA256

eec3604acc91abae3343db62517ef3a8e9a222b6ef86660ba7b20173dc91ba4d
SHA512

672f01eb4e71ff9442c4e8d9a1b2ee1459d6ffb41551df6c6a32ee91510e1f9e524e82ddabdb8620efb7f29cedca9a3abd2b071f4eb0a195a7140749923d3543
SSDEEP

6144:mS48iSC8d+s1ScRmCHY++2RaKcUu4lzyWHBzRrvF:BHC4xkB2ROOBVrv

Score

N/A

Malware Config

Signatures

Files

eec3604acc91abae3343db62517ef3a8e9a222b6ef86660ba7b20173dc91ba4d
.exe windows x86

b26c1f4b17cf209881006671a8876b01

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
GetClassNameA
GetShellWindow

msvcrt

memcpy
sprintf

kernel32

ReadProcessMemory
VirtualQuery
VirtualProtect
GetModuleHandleA
GetConsoleWindow
DecodePointer
Sleep
GetModuleHandleW
GetCurrentProcessId
QueryPerformanceCounter
Module32NextW
IsProcessorFeaturePresent
CreateToolhelp32Snapshot
GetProcessId
EncodePointer
OpenProcess
GetCurrentThreadId
CloseHandle
Process32NextW
IsDebuggerPresent
Process32FirstW
GetSystemTimeAsFileTime
Module32FirstW
CreateThread
GetCommandLineA
WriteProcessMemory

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 296KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy