19edc8b3ba931305d42bfe743354d1d909d0633aa05ae05e3752fa94fac06de9 | Triage

Submit
Reports

Overview

overview

1

Static

static

19edc8b3ba...e9.exe

windows7-x64

19edc8b3ba...e9.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

19edc8b3ba931305d42bfe743354d1d909d0633aa05ae05e3752fa94fac06de9.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

19edc8b3ba931305d42bfe743354d1d909d0633aa05ae05e3752fa94fac06de9.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

19edc8b3ba931305d42bfe743354d1d909d0633aa05ae05e3752fa94fac06de9
Size

159KB
MD5

327a84b633f42120285fe342ec290a15
SHA1

173a064b47baf9bb5c9341ce671546c066ec683f
SHA256

19edc8b3ba931305d42bfe743354d1d909d0633aa05ae05e3752fa94fac06de9
SHA512

af3241817480c47e9f2e2e6f8dbe0254dfd6f966d27244a33eac3ab4fdb68ec0e0ca0bcab2a9a5a6b286a9fb507f474f9733d0f5423a11d7a05c6db6bdfed193
SSDEEP

3072:kSLAVyhYAOksNTexooelxSR2GQdxDkwN8UtuA2TAohZ2Aal2T011XZ9VdbkOxj:kSLo8YAOks12e2R6lSUtmLal2Ta1XvVf

Score

N/A

Malware Config

Signatures

Files

19edc8b3ba931305d42bfe743354d1d909d0633aa05ae05e3752fa94fac06de9
.exe windows x86

434b2876577f94e5656c987da5d50fd7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumPropsA
DlgDirListComboBoxW

wmi

OpenTraceA

esent

JetOpenFile

dnsapi

DnsReplaceRecordSetW

kernel32

VirtualAlloc
GetLastError

mswsock

AcceptEx
GetAcceptExSockaddrs

ole32

CoTaskMemFree
CoInitializeEx
CoCreateInstance
CoUninitialize

ntdll

CsrSetPriorityClass

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 435KB - Virtual size: 435KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy