ec043d4eaa79f547508b3db902edbe41699b0c83acfc7fe4655b75e201e92f15 | Triage

Submit
Reports

Overview

overview

9

Static

static

ec043d4eaa...15.exe

windows7-x64

9

ec043d4eaa...15.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ec043d4eaa79f547508b3db902edbe41699b0c83acfc7fe4655b75e201e92f15.exe

Resource

win7-20220812-en

discovery evasion

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec043d4eaa79f547508b3db902edbe41699b0c83acfc7fe4655b75e201e92f15.exe

Resource

win10v2004-20221111-en

discovery evasion persistence

windows10-2004-x64

7 signatures

150 seconds

General

Target

ec043d4eaa79f547508b3db902edbe41699b0c83acfc7fe4655b75e201e92f15
Size

640KB
MD5

1e9478670daf2e4e468062a229441b31
SHA1

2b83eb07d5316544b936a2d0a24380c57469843d
SHA256

ec043d4eaa79f547508b3db902edbe41699b0c83acfc7fe4655b75e201e92f15
SHA512

fe7200735492e8a94882d8ba886321a6eac4d9062310f37f54e16886fe9e9dbb438c5378528a87d0ce4e6a73b14e679a11e4ebd90d2913866375d086b26e8d4a
SSDEEP

12288:b0PGJV/F+QXuseKsyUY97LkKxX9ojoQU7zs:byKN8wfhFkU3

Score

N/A

Malware Config

Signatures

Files

ec043d4eaa79f547508b3db902edbe41699b0c83acfc7fe4655b75e201e92f15
.exe windows x86

af91986251d66c4d84ea988d673b17ac

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeviceIoControl
GetShortPathNameA
ResetEvent
GetSystemInfo
GetComputerNameW
GetModuleHandleA
GetLastError
FindResourceA
FormatMessageA
GetVersionExA
GetStringTypeA
TlsGetValue
GetLocalTime
GetLogicalDrives
DeleteFileA
GetLocaleInfoA
GetDiskFreeSpaceA
GetCurrentDirectoryW
VirtualQuery
CreateMutexA
InterlockedExchange
CopyFileA
SetCurrentDirectoryA
CompareStringA
GetEnvironmentVariableW
InterlockedDecrement
lstrcmpiA
SetStdHandle
CreateSemaphoreA
GetProcessHeap
lstrcmpiA
CreateNamedPipeW
GetFileType
CloseHandle
lstrcmpA
GetAtomNameW
QueryDosDeviceA
GetStdHandle
GetConsoleTitleW
GetProcAddress
OpenMutexA
SetFileAttributesW

user32

PeekMessageA
CreateWindowExA
DispatchMessageA
GetMessageW
SetFocus
IsCharLowerW
wsprintfA
GetWindowTextA
IsZoomed
GetWindowLongA
LoadImageA
DrawIcon

certcli

CADeleteCA
CAEnumFirstCA
CACloseCertType
CAEnumNextCA

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 595KB - Virtual size: 808KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy