e2e2edf5a1ea96210d20405a928be3e1c5799bf2d36b589ff793dbc49a46c48e | Triage

Submit
Reports

Overview

overview

7

Static

static

e2e2edf5a1...8e.exe

windows7-x64

7

e2e2edf5a1...8e.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e2e2edf5a1ea96210d20405a928be3e1c5799bf2d36b589ff793dbc49a46c48e.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

e2e2edf5a1ea96210d20405a928be3e1c5799bf2d36b589ff793dbc49a46c48e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

e2e2edf5a1ea96210d20405a928be3e1c5799bf2d36b589ff793dbc49a46c48e
Size

106KB
MD5

57f2a6ce599fba60d6db4958f6eab1f2
SHA1

d442a052323166d8bab2dadf3bbb928e7e823eab
SHA256

e2e2edf5a1ea96210d20405a928be3e1c5799bf2d36b589ff793dbc49a46c48e
SHA512

82f419e6514f80fa3eeeaf792ad8223b745611641b7c5288b85116028c374fe52ee77e2171e1e9dfa7525a44cf20a4b69c9d625550f83740f552cd689a76afa2
SSDEEP

3072:7/MKF0LTJU+m4vnxgVQWrVJTfeBTsviK+Q4:7N0L2+3xgSa7ai

Score

N/A

Malware Config

Signatures

Files

e2e2edf5a1ea96210d20405a928be3e1c5799bf2d36b589ff793dbc49a46c48e
.exe windows x86

ee33db01766aa7698da77489e9381d93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetCurrentProcess
Process32Next
TerminateProcess
OpenProcess
Process32First
CreateToolhelp32Snapshot
Module32Next
Module32First
SetFileAttributesA
GetFileAttributesA
WriteFile
CreateFileA
SizeofResource
LoadLibraryA
FindResourceA
GetModuleHandleA
GetCurrentProcessId
WinExec
GetModuleFileNameA
MultiByteToWideChar
lstrlenA
SetCurrentDirectoryA
GetSystemDirectoryA
Sleep
GetTickCount
MoveFileA
DeleteFileA
GetProcAddress
GlobalFree
LoadResource
GlobalAlloc

user32

PostMessageA
EnumWindows
GetWindowThreadProcessId
GetWindowTextA
wsprintfA

advapi32

AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueA

ws2_32

WSCDeinstallProvider
WSCInstallProvider
WSCEnumProtocols

rpcrt4

UuidCreate

msvcrt

memcmp
sprintf
strcpy
strrchr
strncpy
_stricmp
strlen
memset
strstr
memcpy
wcscpy
swprintf
_strlwr

Sections

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy