ddce021c377a5d8d7a58aff543edc89b66a9143ee58cc485b8ef619d1fc9eaeb | Triage

Submit
Reports

Overview

overview

8

Static

static

ddce021c37...eb.exe

windows7-x64

8

ddce021c37...eb.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ddce021c377a5d8d7a58aff543edc89b66a9143ee58cc485b8ef619d1fc9eaeb.exe

Resource

win7-20221111-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ddce021c377a5d8d7a58aff543edc89b66a9143ee58cc485b8ef619d1fc9eaeb.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ddce021c377a5d8d7a58aff543edc89b66a9143ee58cc485b8ef619d1fc9eaeb
Size

26KB
MD5

5c5ce288afc7c17d4a91082bd4a463ac
SHA1

2e11af842fdb36c819a6a63565fb003f789b4d97
SHA256

ddce021c377a5d8d7a58aff543edc89b66a9143ee58cc485b8ef619d1fc9eaeb
SHA512

ed63dd1e56c34cbb34034d2dd7a7da7109ad5156c5a7bcceb1b6a0b768f31006ed11aa7f8ddfee0ef532dc74e7cdfb4521b4fb280d51ca4fe0390173d9a2f959
SSDEEP

384:fMfNgbvlsZrfga2hZCVcqX1NC82opY0eMcuo08dTtdJ:iebvlsZErhZOLF6+QrLtdJ

Score

N/A

Malware Config

Signatures

Files

ddce021c377a5d8d7a58aff543edc89b66a9143ee58cc485b8ef619d1fc9eaeb
.exe windows x86

f0fae1b48f78d6beb845182c464f8344

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_exit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter

user32

SendMessageW
LoadStringW
PostQuitMessage
GetWindowRect
GetDlgItem
SendDlgItemMessageW
DialogBoxParamA

kernel32

CreateDirectoryA
GetCommandLineW
FindResourceW
LoadResource
SizeofResource
LockResource
ReadFile
SleepEx
lstrcatW
HeapCreate
GetCurrentDirectoryW
GetFileSize
GetModuleHandleA
GetLastError
lstrcpynW
HeapAlloc
GetStartupInfoA
ExitProcess
CloseHandle

comctl32

InitCommonControlsEx

shell32

CommandLineToArgvW

wtsapi32

WTSWaitSystemEvent
WTSEnumerateProcessesA

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy