e28c4480da2b7a689e64e3bd1d602510069eacea6375090ca80cd3999d2a1a4a | Triage

Submit
Reports

Overview

overview

1

Static

static

e28c4480da...4a.exe

windows7-x64

1

e28c4480da...4a.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e28c4480da2b7a689e64e3bd1d602510069eacea6375090ca80cd3999d2a1a4a.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

e28c4480da2b7a689e64e3bd1d602510069eacea6375090ca80cd3999d2a1a4a.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

e28c4480da2b7a689e64e3bd1d602510069eacea6375090ca80cd3999d2a1a4a
Size

811KB
MD5

0edc13e39592ab52c0df04d4643af666
SHA1

67a691e66a9048a5da8cb654e54e6d4b6c1a9b12
SHA256

e28c4480da2b7a689e64e3bd1d602510069eacea6375090ca80cd3999d2a1a4a
SHA512

6703382cd7e5bb5650899eac81618dc64639ad800c4dded3cb69278814d05f6d0882d793363c5677336f13bbb6d6045b8dce5ebc13eb2bd6df6cd6640d7727fb
SSDEEP

12288:qb9pnzYD/qHM7CScBWYCY/6ShL0RcWjcW7qWVwfj4scOrSJEiOKuwbOtYbcp:Mz/M7CpCYRLZWAszVAjo5eiP/OEc

Score

N/A

Malware Config

Signatures

Files

e28c4480da2b7a689e64e3bd1d602510069eacea6375090ca80cd3999d2a1a4a
.exe windows x86

73163b9ff9023812ff71ca9ea6ef618c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
LeaveCriticalSection
InitializeCriticalSection
GetModuleFileNameA
GetCurrentThreadId
VirtualProtectEx
CreateFileA
GetFileTime
GetDriveTypeA
RemoveDirectoryA
LocalLock
GetProcessHeap
GetCalendarInfoW
FindClose
GetLocalTime
GlobalFree
GetStartupInfoA
WriteConsoleW
TlsGetValue
GetModuleHandleA
CloseHandle
Sleep
CreateDirectoryA
GetConsoleMode
EnterCriticalSection

user32

GetKeyState
FillRect
GetWindowDC
wsprintfA
GetWindowLongA
MessageBoxA
IsWindowEnabled
EqualRect
IsWindowVisible
DispatchMessageA
PeekMessageA
GetSysColor
GetWindowLongA

cryptnet

CryptGetObjectUrl
CertDllVerifyCTLUsage
CryptGetTimeValidObject
LdapProvOpenStore

advapi32

IsValidSid

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy