44uIENE[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

44uIENE.exe

windows7-x64

44uIENE.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

44uIENE.exe

Resource

win7-20220901-en

cryptbot discovery evasion spyware stealer themida trojan

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

44uIENE.exe

Resource

win10v2004-20220812-en

cryptbot discovery evasion spyware stealer themida trojan

windows10-2004-x64

18 signatures

150 seconds

General

Target

44uIENE.exe
Size

3.4MB
MD5

ecf1fea6d44e199fb010218385e0e48d
SHA1

9b2ad4f465a3847d8324c4bbcf4d07f9dc888fc6
SHA256

6287dc709cd7b990a32615d9d8ccff3d2e1de1ef375662c771b165801ae6b191
SHA512

33e0eeded63784d82855cec90670884feb17d403eebd832d43e35b90baf9ec52084ab1a0c436d943d33f4c05c3db9511967d0282e4c34d1d0249cc3cc1bf9a60
SSDEEP

49152:QBPQ/hrbldsMZyRg+9Y9yyPMxp2bBZrqVIiFUoNSvgNWMpRwopqVnnEUhy:GPQ/hrjsMZWgPpPrZiFUgSgR1pqVnnE

Score

N/A

Malware Config

Signatures

Files

44uIENE.exe
.exe windows x86

b10ffd43ebea805fee00ca6fb2685bc0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

system

kernel32

GetFileBandwidthReservation
QueryDepthSList
MapViewOfFile
GetSystemTimeAsFileTime
PrepareTape
GetFileAttributesA
DeleteFileA
GetPrivateProfileSectionNamesA
CloseThreadpool
GetBinaryTypeW
SetProcessAffinityUpdateMode
FindFirstFileExA
SetTimerQueueTimer
SetLocaleInfoA
OpenEventW
CancelThreadpoolIo
OpenSemaphoreA
GetVolumePathNamesForVolumeNameA
QueueUserWorkItem
SetCriticalSectionSpinCount
SetDllDirectoryA
WriteProfileStringA
CreateThreadpoolWait
CancelTimerQueueTimer

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy