2e299ddc8a33c9beffe044867877dcc9b9f9af495a9fd062a3fbed07563f189d | Triage

Submit
Reports

Overview

overview

Static

static

2e299ddc8a...9d.exe

windows7-x64

2e299ddc8a...9d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2e299ddc8a33c9beffe044867877dcc9b9f9af495a9fd062a3fbed07563f189d.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

2e299ddc8a33c9beffe044867877dcc9b9f9af495a9fd062a3fbed07563f189d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

General

Target

2e299ddc8a33c9beffe044867877dcc9b9f9af495a9fd062a3fbed07563f189d
Size

200KB
MD5

0e4be727e8177d000dcf96064b6b1b63
SHA1

7942af8cb8a2d29ff1ac2119825e831f7e25f3f2
SHA256

2e299ddc8a33c9beffe044867877dcc9b9f9af495a9fd062a3fbed07563f189d
SHA512

45496bfbacf91acb2cd27559d27b934966305c4929d91c29a3a5f974a064aa6ecbd5d4e66da55d0452254f00724d4d03044915a755248257f732f40ed9a09440
SSDEEP

3072:fvpASz6xZs51byEJsRmrKy07FWC7jE3+y8hP+yFF9bpSXpANOB:flqMo7F7Xfd+nD

Score

N/A

Malware Config

Signatures

Files

2e299ddc8a33c9beffe044867877dcc9b9f9af495a9fd062a3fbed07563f189d
.exe windows x86

2488899540a87b6ecd82ba31b5bc5369

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetVersionExW
GetUserDefaultLCID
Sleep
CloseHandle
LoadLibraryW
GetLastError
CreateFileMappingW
LoadLibraryA
LocalAlloc
FoldStringW
GetAtomNameW
FreeLibrary
LoadLibraryW
GetSystemDirectoryW
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThreadId
TlsGetValue
GetProcAddress
GetModuleHandleA

shell32

SHLimitInputEdit
SHGetFolderPathW

oleaut32

DispGetIDsOfNames
CreateErrorInfo
VarTokenizeFormatString
SafeArrayAllocDescriptorEx
GetErrorInfo
SetErrorInfo

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 884B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy