94eeb9368809badcb575e18b58964d1494fbead164c0efbe865b65235dc1502c | Triage

Submit
Reports

Overview

overview

8

Static

static

94eeb93688...2c.exe

windows7-x64

8

94eeb93688...2c.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

94eeb9368809badcb575e18b58964d1494fbead164c0efbe865b65235dc1502c.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

94eeb9368809badcb575e18b58964d1494fbead164c0efbe865b65235dc1502c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

94eeb9368809badcb575e18b58964d1494fbead164c0efbe865b65235dc1502c
Size

741KB
MD5

2b92f01920011f077dff0c950287ddb4
SHA1

d61e809e85bca0365faaa01ce146e5bfd3e2f9b9
SHA256

94eeb9368809badcb575e18b58964d1494fbead164c0efbe865b65235dc1502c
SHA512

5338369e94afb7d1c19ae041e8576c5368e966db542ed83e3e17cf6a161748b4037a454505f7f6f61caf104bbb9d1e5c1d8b185981e9a2dad8ef2cb3cb312a4f
SSDEEP

12288:sqs9oPsypWzj8MK/bwN0LJTrwemQBogw/g1zY84Hz/Zj9sbNOkAIHv+90FWWvK:sqNPAsMK/tLJ/kgE1kzHvDFWV

Score

N/A

Malware Config

Signatures

Files

94eeb9368809badcb575e18b58964d1494fbead164c0efbe865b65235dc1502c
.exe windows x86

cd56fec5ff86689935d338aa76d95bf7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
HeapDestroy
GetSystemInfo
CloseHandle
GetModuleHandleA
DeleteFileA
GetTickCount
CreateFileA
GetEnvironmentVariableA
ResetEvent
FindClose
ExitProcess
WaitForSingleObject
CreateMutexW
AddAtomA
InitializeCriticalSection
GetFileSize
HeapSize
SuspendThread
GetTickCount
GetStartupInfoW
HeapCreate
SetEndOfFile
GetCurrentDirectoryA
ReleaseMutex

wininet

DeleteUrlCacheEntryA
DeleteUrlCacheEntryA
HttpEndRequestA
FtpDeleteFileA
FtpOpenFileA
FtpCreateDirectoryA
FtpGetFileA
FtpPutFileA
DeleteUrlCacheEntryA
FtpGetCurrentDirectoryA
FtpFindFirstFileA
HttpQueryInfoA
FindCloseUrlCache

encapi

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 735KB - Virtual size: 734KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy