9ec9a14b3da38444c4d40562b7ff9d1b0dbd530cd4565ae3943db5eba8c43401 | Triage

Submit
Reports

Overview

overview

5

Static

static

9ec9a14b3d...01.exe

windows7-x64

5

9ec9a14b3d...01.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9ec9a14b3da38444c4d40562b7ff9d1b0dbd530cd4565ae3943db5eba8c43401.exe

Resource

win7-20220901-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

9ec9a14b3da38444c4d40562b7ff9d1b0dbd530cd4565ae3943db5eba8c43401.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

9ec9a14b3da38444c4d40562b7ff9d1b0dbd530cd4565ae3943db5eba8c43401
Size

2.1MB
MD5

7cd42ef0f03ceec577c77e2b3b08cc9b
SHA1

a500f5e5c0c9e413adbb05dbeec143ac458f6f62
SHA256

9ec9a14b3da38444c4d40562b7ff9d1b0dbd530cd4565ae3943db5eba8c43401
SHA512

0bfa21f8a6f0cd330e0274e6356eba5930131615e83f627002cd503a53e27fbfc6f14168c3d8aec717dd1f1559215c6b09e74591d1089ebebd5ee8f2c6326938
SSDEEP

49152:Xm5Md7deokvSbo5SlwMRPabxnw2lOGR2IwAk6xviA+:XuokJS28yxn87Iwz6V7+

Score

N/A

Malware Config

Signatures

Files

9ec9a14b3da38444c4d40562b7ff9d1b0dbd530cd4565ae3943db5eba8c43401
.exe windows x86

a2d52ad9b93d5d3883003460ff6c902a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

wsock32

__WSAFDIsSet

version

VerQueryValueW

winmm

timeGetTime

comctl32

ImageList_Remove

mpr

WNetUseConnectionW

wininet

FtpOpenFileW

psapi

GetProcessMemoryInfo

iphlpapi

IcmpSendEcho

userenv

LoadUserProfileW

uxtheme

IsThemeActive

user32

GetDC

gdi32

LineTo

comdlg32

GetSaveFileNameW

advapi32

AddAce

shell32

DragFinish

ole32

CoGetObject

oleaut32

RegisterTypeLi

Sections

.MPRESS1
Size: 1.8MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy