ec6826239d4534f7561b69eb5f1f79e39fd624f75ec4c5484c82428231f48651 | Triage

Submit
Reports

Overview

overview

8

Static

static

ec6826239d...51.exe

windows7-x64

8

ec6826239d...51.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ec6826239d4534f7561b69eb5f1f79e39fd624f75ec4c5484c82428231f48651.exe

Resource

win7-20220812-en

evasion persistence upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec6826239d4534f7561b69eb5f1f79e39fd624f75ec4c5484c82428231f48651.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ec6826239d4534f7561b69eb5f1f79e39fd624f75ec4c5484c82428231f48651
Size

233KB
MD5

ce0ee26bfbc866584bbfe029ba013722
SHA1

cc0ec1de94f502b2f5ed694cbbed2bc0045b2572
SHA256

ec6826239d4534f7561b69eb5f1f79e39fd624f75ec4c5484c82428231f48651
SHA512

043726af137aec6e8c6e411e842af3fd7113ae60b6d894705b4a1c38149a46d60ed04e418d2b6c2e9bfa7229208e0c7219ed5fe83a23ebc722050be17524dc64
SSDEEP

6144:JZEjiPnqZIxIfY90m6nYw9j+x5cD67rput4fO6tS5M:JMiPRUY90mQYek4+26tS5M

Score

N/A

Malware Config

Signatures

Files

ec6826239d4534f7561b69eb5f1f79e39fd624f75ec4c5484c82428231f48651
.exe windows x86

a4ca576ee05e0a53401e4ff4b4a29cb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetTickCount
ExitProcess
CreateFileA
ResetEvent
GetTickCount
SetLastError
GetCurrentDirectoryA
DeleteFileA
HeapSize
WaitForSingleObject
ReleaseMutex
GetEnvironmentVariableA
GetStartupInfoW
HeapDestroy
GetFileSize
InitializeCriticalSection
Sleep
HeapCreate
CreateMutexW
SuspendThread
FindClose
GetProfileIntW
CloseHandle
GetCalendarInfoA

user32

GetDC
MessageBoxA
GetDC
DispatchMessageW
GetCursorPos
GetSysColor
CallWindowProcW
GetWindowLongA
GetDC
GetDC
PeekMessageA
GetClassInfoA
DispatchMessageW

dmintf

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy