e5f549c7e833eb3b6521e76dda9c29c8a37d597267354045d3eabea6bf8f1f47 | Triage

Submit
Reports

Overview

overview

8

Static

static

e5f549c7e8...47.exe

windows7-x64

8

e5f549c7e8...47.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e5f549c7e833eb3b6521e76dda9c29c8a37d597267354045d3eabea6bf8f1f47.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e5f549c7e833eb3b6521e76dda9c29c8a37d597267354045d3eabea6bf8f1f47.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

e5f549c7e833eb3b6521e76dda9c29c8a37d597267354045d3eabea6bf8f1f47
Size

749KB
MD5

0513f248fd76b349bec32310284a4f7e
SHA1

88704d5de0da36d4a4b72567967475107091ff04
SHA256

e5f549c7e833eb3b6521e76dda9c29c8a37d597267354045d3eabea6bf8f1f47
SHA512

3af9393bdd6200f50c27d6807d58736d9170e825154af2078719238f496ea196243bdd8412a3eccc3be43f4ae4c8bcaa5c2838725004771b8350b216430928a0
SSDEEP

12288:Ua9tK1KCzRQDGHg360+jjtugwtJduqr//+o3XtffmIBv3lCckK+Qqsrx+64h:UMtKEMQiUIJuzduqr//++tZBvVdqiw

Score

N/A

Malware Config

Signatures

Files

e5f549c7e833eb3b6521e76dda9c29c8a37d597267354045d3eabea6bf8f1f47
.exe windows x86

fda60eb894a6058eb5c5a04df9d1979e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
SetStdHandle
GetModuleHandleA
ReleaseMutex
CreateMailslotW
HeapFree
RemoveDirectoryA
CreateFileMappingW
lstrlenA
VirtualProtectEx
WriteFile
SetEvent
GetCommandLineA
CreateDirectoryW
ResetEvent
RemoveDirectoryA
FindClose
Sleep
WriteConsoleW
OpenEventA
DeleteFileA
SetLocalTime
GetLastError
FindClose
GetFileType

uxtheme

CloseThemeData
DrawThemeBackground
IsThemeActive
GetThemeBool
SetWindowTheme
GetThemeSysSize
GetThemeTextExtent
CloseThemeData
OpenThemeData
DrawThemeEdge
GetWindowTheme
GetThemeColor
GetThemeTextMetrics

cmcfg32

CMConfig
CMConfig
CMConfig
CMConfig

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy