6eb5f18896abf80b4038bc6650196d8017959bd6963af27225f2e10762497615 | Triage

Submit
Reports

Overview

overview

Static

static

6eb5f18896...15.exe

windows7-x64

6eb5f18896...15.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6eb5f18896abf80b4038bc6650196d8017959bd6963af27225f2e10762497615.exe

Resource

win7-20221111-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

6eb5f18896abf80b4038bc6650196d8017959bd6963af27225f2e10762497615.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6eb5f18896abf80b4038bc6650196d8017959bd6963af27225f2e10762497615
Size

178KB
MD5

727cf305772860abd334c71d7bc36059
SHA1

ed9da02796cec03459453485dd44858dda180938
SHA256

6eb5f18896abf80b4038bc6650196d8017959bd6963af27225f2e10762497615
SHA512

26ab7384dbff320132d4d9501456d3ef88e5045cfdf48ef097849f61fab4ea8655e8c07c3d3926500c07e0ddd33291005c7c926db4596e96c600de58a6c6c56a
SSDEEP

3072:5lZeYd+OK4GoCsMQFG+jpAjhMLtnpSjX/1UTyHXgBmJQHOmBODE6TGquD5csHUHK:5rld+O6slgGpmhMhUjaXBQQdB2Cb3LF3

Score

N/A

Malware Config

Signatures

Files

6eb5f18896abf80b4038bc6650196d8017959bd6963af27225f2e10762497615
.exe windows x86

f01930adbebe24c0a91f4fef39fa9292

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcscmp
_cexit
_exit
__p__fmode
__setusermatherr
gets
_XcptFilter
__p__commode
isupper
__set_app_type
_controlfp
_initterm
_ismbblead
towupper
clearerr
fputs
exit
_amsg_exit
__getmainargs

kernel32

EnumResourceTypesA
FindResourceW
LocalUnlock
WaitForMultipleObjectsEx
LoadResource
DeleteFileA
SearchPathW
MoveFileA
SetFileAttributesA
IsValidLocale
LoadLibraryA
CreateMailslotW
GetUserDefaultUILanguage

Exports

Exports

_ReplyMessageReplyMessageReplyMessage@0

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy