372195f3adae996ea0b6c4f5dd5f485688f225d6ab2af4b7d0481ee8f9a89b8f | Triage

Submit
Reports

Overview

overview

1

Static

static

372195f3ad...8f.exe

windows7-x64

1

372195f3ad...8f.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

372195f3adae996ea0b6c4f5dd5f485688f225d6ab2af4b7d0481ee8f9a89b8f.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

372195f3adae996ea0b6c4f5dd5f485688f225d6ab2af4b7d0481ee8f9a89b8f.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

372195f3adae996ea0b6c4f5dd5f485688f225d6ab2af4b7d0481ee8f9a89b8f
Size

108KB
MD5

0cd1909e6f351701896fa9b363f5c5db
SHA1

05ec5ec60ffd69a3ed841107fb4105e4fb44d0ae
SHA256

372195f3adae996ea0b6c4f5dd5f485688f225d6ab2af4b7d0481ee8f9a89b8f
SHA512

6e4aaf84376a399e3c23ace4c237069b8eec6fba50b22e6c87873e9a24b2ca77ef0bfee14288ff505061b4e93020056375954861a39ad06b5ee947562a5d6254
SSDEEP

1536:Nb92/PvERLRC+xpy3upUUSd+IxhKCnO6VBrJ2iOseHwx3s1nbk2qfLuk/:NbmPwLLy6Utd+6nO6V1J2b5Qxc1g2C6q

Score

N/A

Malware Config

Signatures

Files

372195f3adae996ea0b6c4f5dd5f485688f225d6ab2af4b7d0481ee8f9a89b8f
.exe windows x86

dce3ccd80f7ff1564f6826f2b4e37f63

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryW
GetVersionExA
GetProcAddress
DeleteFileA
GetStartupInfoW
GetModuleHandleA
GetStdHandle
IsDBCSLeadByte
GetTempPathA
InterlockedExchange
RtlMoveMemory
DeviceIoControl
GetTimeZoneInformation
OpenProcess
GetThreadLocale
GetCurrentThread
GetOEMCP
WritePrivateProfileStringA
SizeofResource
VirtualQuery
RemoveDirectoryA
SetLastError
GetStringTypeA
LoadResource
InterlockedDecrement
FlushFileBuffers
GlobalUnlock
VirtualProtect
GetDiskFreeSpaceA

msvcrt

_XcptFilter
_initterm
_except_handler3
_exit
_adjust_fdiv
__p__fmode
__set_app_type
tan
__p__commode
__p___initenv
__getmainargs
_controlfp

Sections

.text
Size: 1024B - Virtual size: 578B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Ekepo Em
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy