6eca391ed0b5c83a7ac999a277f8cb80f74b2afc5e4254d4c6d2c604aa44470b | Triage

Submit
Reports

Overview

overview

8

Static

static

6eca391ed0...0b.exe

windows7-x64

8

6eca391ed0...0b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6eca391ed0b5c83a7ac999a277f8cb80f74b2afc5e4254d4c6d2c604aa44470b.exe

Resource

win7-20220901-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

6eca391ed0b5c83a7ac999a277f8cb80f74b2afc5e4254d4c6d2c604aa44470b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

9 signatures

150 seconds

General

Target

6eca391ed0b5c83a7ac999a277f8cb80f74b2afc5e4254d4c6d2c604aa44470b
Size

277KB
MD5

0c8ac425ea4acde5e9cfc542e7110d3f
SHA1

a4e08d04c251a494d5ac8df78dd95568b614d2e0
SHA256

6eca391ed0b5c83a7ac999a277f8cb80f74b2afc5e4254d4c6d2c604aa44470b
SHA512

dcd6514ec0133e068a1fea0690446d24aece319d9519c59d765df09bd7b55b8c1a441ba8f3da7f9fd00cde64979cc2eec0b52be502614136cd55dbdf66493d4b
SSDEEP

6144:3SJE0Uj1UipVnI9fVikvW7WH2CLDXvze5AREOqQ1JE73kxEehTPxjBd:3Syt5pHQik+g22DX7e52qQgzwEetPx9d

Score

N/A

Malware Config

Signatures

Files

6eca391ed0b5c83a7ac999a277f8cb80f74b2afc5e4254d4c6d2c604aa44470b
.exe windows x86

081dc71b77c8a4641290cbd18b842611

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetCurrentProcess
GlobalFindAtomA
GetTickCount
GetUserDefaultLCID
CloseHandle
MultiByteToWideChar
WideCharToMultiByte
CreateFileA
GetSystemTimeAsFileTime
LoadLibraryW
QueryPerformanceCounter
lstrcpyW
SystemTimeToFileTime
lstrcmpA
HeapAlloc
HeapFree
FindResourceW
lstrlenW
GetProcessHeap
SetUnhandledExceptionFilter
GetLocalTime
GetCurrentProcessId

olecli32

LeSetData
LeSetBounds
LeSaveToStream
LeQueryOpen
LeRelease
LeObjectConvert
LeGetUpdateOptions
LeQueryOutOfDate
LeQueryBounds
LeReconnect
LeObjectLong

psapi

EnumPageFilesA
GetPerformanceInfo
EnumPageFilesW
GetProcessImageFileNameA
EmptyWorkingSet
EnumProcessModules

Sections

.text
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy