5d431e0fd27ce789a51d476c9a3ede00ccc162e2a6d312e5617c3e24db41dc73 | Triage

Submit
Reports

Overview

overview

1

Static

static

dridex

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5d431e0fd27ce789a51d476c9a3ede00ccc162e2a6d312e5617c3e24db41dc73.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

5d431e0fd27ce789a51d476c9a3ede00ccc162e2a6d312e5617c3e24db41dc73
Size

5.6MB
MD5

234909a49e91096e49f3beb8984170bf
SHA1

7cc73bd86ddfb75da1078d648ed21aa8eaa45ef6
SHA256

5d431e0fd27ce789a51d476c9a3ede00ccc162e2a6d312e5617c3e24db41dc73
SHA512

a885a8c09597ef1bf3e24dd0a2e50201cfa4326bf69b298043e62dbbe14610cbab112a2e658c243d9e7a6c4872a4631a29c287617180dfe9300d269b0674592c
SSDEEP

98304:MRgRhvFJo4STiCStTBzaYHAkylHKUuXJREE1ilel6sZzTCIZaDzdaxVizYC/NlXg:9HQSDaxIXEE4lWBmyacxVizY6

Score

N/A

Malware Config

Signatures

Files

5d431e0fd27ce789a51d476c9a3ede00ccc162e2a6d312e5617c3e24db41dc73
.exe windows x64

a134c70472750a73bd9faac2db8b0d3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

WriteProcessMemory
GetVersion
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

CharUpperBuffW

Sections

.text
Size: - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hqa0
Size: - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hqa1
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hqa2
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy