2aef8787ba562a6f45a622d7241dc31e482d8a418845fb2816db2fb8dfc5a375 | Triage

Submit
Reports

Overview

overview

7

Static

static

2aef8787ba...75.exe

windows7-x64

7

2aef8787ba...75.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2aef8787ba562a6f45a622d7241dc31e482d8a418845fb2816db2fb8dfc5a375.exe

Resource

win7-20221111-en

persistence ransomware

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

2aef8787ba562a6f45a622d7241dc31e482d8a418845fb2816db2fb8dfc5a375.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

General

Target

2aef8787ba562a6f45a622d7241dc31e482d8a418845fb2816db2fb8dfc5a375
Size

159KB
MD5

9fc1852d31118477de3de2980a84d869
SHA1

d6ae96b3d6d454507a340a51d32fb029686bc06f
SHA256

2aef8787ba562a6f45a622d7241dc31e482d8a418845fb2816db2fb8dfc5a375
SHA512

9fa384b93565adfec399f4fbea0a595f304cd02e4d2cb0fcc208e3d8113d6d8914b6f4857d7b3bc94fe4aa394547ab3420c75a11ef7dce0ea5927a11cafa4520
SSDEEP

3072:Aat8Y6bDtsAngoHLFungN1BM4U+VFrw550u8BLaQzOvetdK:bt8Y6bDtsrncBdtrwsVBaPAd

Score

N/A

Malware Config

Signatures

Files

2aef8787ba562a6f45a622d7241dc31e482d8a418845fb2816db2fb8dfc5a375
.exe windows x86

c2a0ca842eafaffff21ac045864f1585

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrPBrkW

user32

GetWindowDC

kernel32

GetTickCount

Exports

Exports

LowerForY
?RevekFall@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y
?ServletKon@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy