7eb9d23fdd9a19d0b9cccc56bfa7c26d93190ae7228299090b5fe5590bc0110f | Triage

Submit
Reports

Overview

overview

7

Static

static

7eb9d23fdd...0f.exe

windows7-x64

7

7eb9d23fdd...0f.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

7eb9d23fdd9a19d0b9cccc56bfa7c26d93190ae7228299090b5fe5590bc0110f.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

7eb9d23fdd9a19d0b9cccc56bfa7c26d93190ae7228299090b5fe5590bc0110f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

7eb9d23fdd9a19d0b9cccc56bfa7c26d93190ae7228299090b5fe5590bc0110f
Size

110KB
MD5

64415c313ab6f99cb66f47f20abb51d7
SHA1

f63b2a0570f6292c10d6c8b513be7b6c4f3b2376
SHA256

7eb9d23fdd9a19d0b9cccc56bfa7c26d93190ae7228299090b5fe5590bc0110f
SHA512

1256deb254d749499bf1c2895e9050ad29d12c07941639baf45501bc8900ce92063b12f73cfd0872ad9527a77fa2f361614afbba24f70d2d642f9b37703f3238
SSDEEP

1536:0vI9nLlX0ZpF1zVr5l1LVL7MEQXBAV//8LVxam3xIBldJ/oMZwz17fmZhGCL2f0G:8Z31FHL7MyVXmVoBXJwcwz9fSLibQ4

Score

N/A

Malware Config

Signatures

Files

7eb9d23fdd9a19d0b9cccc56bfa7c26d93190ae7228299090b5fe5590bc0110f
.exe windows x86

ee33db01766aa7698da77489e9381d93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetCurrentProcess
Process32Next
TerminateProcess
OpenProcess
Process32First
CreateToolhelp32Snapshot
Module32Next
Module32First
SetFileAttributesA
GetFileAttributesA
WriteFile
CreateFileA
SizeofResource
LoadLibraryA
FindResourceA
GetModuleHandleA
GetCurrentProcessId
WinExec
GetModuleFileNameA
MultiByteToWideChar
lstrlenA
SetCurrentDirectoryA
GetSystemDirectoryA
Sleep
GetTickCount
MoveFileA
DeleteFileA
GetProcAddress
GlobalFree
LoadResource
GlobalAlloc

user32

PostMessageA
EnumWindows
GetWindowThreadProcessId
GetWindowTextA
wsprintfA

advapi32

AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueA

ws2_32

WSCDeinstallProvider
WSCInstallProvider
WSCEnumProtocols

rpcrt4

UuidCreate

msvcrt

memcmp
sprintf
strcpy
strrchr
strncpy
_stricmp
strlen
memset
strstr
memcpy
wcscpy
swprintf
_strlwr

Sections

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy