e40ba1657627c57734fbead3305b75f43227fc275d3c82d5634be4263d4af7b2 | Triage

Submit
Reports

Overview

overview

Static

static

e40ba16576...b2.exe

windows7-x64

e40ba16576...b2.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e40ba1657627c57734fbead3305b75f43227fc275d3c82d5634be4263d4af7b2.exe

Resource

win7-20220812-en

evasion persistence spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

e40ba1657627c57734fbead3305b75f43227fc275d3c82d5634be4263d4af7b2.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

e40ba1657627c57734fbead3305b75f43227fc275d3c82d5634be4263d4af7b2
Size

155KB
MD5

93921a4285047c9370931cc4e05ecca5
SHA1

8f89d460f8ea60314462f07d86d926fa20f1b8b7
SHA256

e40ba1657627c57734fbead3305b75f43227fc275d3c82d5634be4263d4af7b2
SHA512

fb632792a8564ed2a6386f923fd4df9c5ed00fd87253fc37c27b8ad1ce3e0513bcd9e76311644f5d6fef60fdb2d5e9d6810da328342d0dfd60b068749b6b1eaa
SSDEEP

3072:o4qaAQMUQHhAMRhtGekicN/GEKj0BSfkH4z3eMzWn:1QQsCWzLPA/s08z3j6

Score

N/A

Malware Config

Signatures

Files

e40ba1657627c57734fbead3305b75f43227fc275d3c82d5634be4263d4af7b2
.exe windows x86

0a92f79d51356342953a192949a89c71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualLock
GetConsoleScreenBufferInfo
VirtualAllocEx
VirtualProtect
VirtualFreeEx
VirtualQuery

advapi32

CredDeleteW

opengl32

wglCreateLayerContext
wglGetProcAddress

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy