e564a0899167bceed671b08be8b04a1cbd502ac6f69ac5676524d714b0334dbd | Triage

Submit
Reports

Overview

overview

1

Static

static

e564a08991...bd.exe

windows7-x64

1

e564a08991...bd.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e564a0899167bceed671b08be8b04a1cbd502ac6f69ac5676524d714b0334dbd.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

e564a0899167bceed671b08be8b04a1cbd502ac6f69ac5676524d714b0334dbd.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

e564a0899167bceed671b08be8b04a1cbd502ac6f69ac5676524d714b0334dbd
Size

92KB
MD5

119f73a35a789d7b7ab338393b9c846d
SHA1

a039cdd05c36f9c6dc6f7af0561f7de285a9cbaf
SHA256

e564a0899167bceed671b08be8b04a1cbd502ac6f69ac5676524d714b0334dbd
SHA512

dfb844c66c4cb14a5f4cb43337d74389faec2afef2863390cf7f6124418237f91941b0590b4ad9724f4117e5ee84dc24598f78d2a5a1b091b64edd1bee6a4463
SSDEEP

768:BcKOnExNKaNW/Hsuj/Zzn9PeurzD8zDNhzD2zDSETgrBdPCK/P65vFG1r:2lnsl6HsEzzfDgDHDqDxTCrP3Yvwr

Score

N/A

Malware Config

Signatures

Files

e564a0899167bceed671b08be8b04a1cbd502ac6f69ac5676524d714b0334dbd
.exe windows x86

915d9349fe7c41d66cba5c1b76e2a2c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
VirtualAllocEx
CloseHandle
CreateEventW
CreateFileMappingW
CreateMutexW
CreateProcessW
CreateThread
GetExitCodeProcess
GetExitCodeThread
LoadLibraryA
GetVersionExW
HeapFree
ReleaseMutex
SetEvent
Sleep
TerminateThread
UnmapViewOfFile
WaitForMultipleObjects
WaitForSingleObject
GetModuleHandleA
GetProcAddress

gdi32

GetStockObject

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy