1efa23af16cb0754ee32c55c8f38b0bc04f9dd803660344555a6a6db5c914802 | Triage

Submit
Reports

Overview

overview

1

Static

static

1efa23af16...02.exe

windows7-x64

1efa23af16...02.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1efa23af16cb0754ee32c55c8f38b0bc04f9dd803660344555a6a6db5c914802.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

1efa23af16cb0754ee32c55c8f38b0bc04f9dd803660344555a6a6db5c914802.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

1efa23af16cb0754ee32c55c8f38b0bc04f9dd803660344555a6a6db5c914802
Size

328KB
MD5

de10ad15aa4defa5219e67adfa350b32
SHA1

05c5dd0f74f24f24261ad5e2e492b00600b6544e
SHA256

1efa23af16cb0754ee32c55c8f38b0bc04f9dd803660344555a6a6db5c914802
SHA512

f79d615384c54ef63c214e639acefb72211ff3758369cbd624232bc2860ea93687ceda1b85448790c2a9734a814c7c7cb9739ae99090e3a3cc4adddd1d1b1db2
SSDEEP

6144:y2GJG66o4uHFJ/oL11yQmbVhelX6FymHU+Cy+unZ7QiD/1tltGeSJuys:yGg40+iQmb7el6Df57Qi71D0luys

Score

N/A

Malware Config

Signatures

Files

1efa23af16cb0754ee32c55c8f38b0bc04f9dd803660344555a6a6db5c914802
.exe windows x86

12c8658742175f54f910576c66c59e6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
GetStringTypeA
GlobalFree
GetProcAddress
VirtualAlloc
GetModuleHandleA
GetStartupInfoA

secur32

VerifySignature
QueryCredentialsAttributesA
InitializeSecurityContextA
DecryptMessage
AcceptSecurityContext
MakeSignature
EncryptMessage
ExportSecurityContext
FreeCredentialsHandle
ApplyControlToken
CompleteAuthToken
DeleteSecurityContext

netapi32

NetAuditClear
NetGetJoinableOUs
NetGetDCName
NetFileClose
NetGroupAdd
Netbios
NetErrorLogRead
NetFileEnum
NetConnectionEnum
NetGetAnyDCName
NetConfigSet

msvcrt

_pctype
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_acmdln
exit
_XcptFilter
_exit
perror
__getmainargs
iswctype
__mb_cur_max
_initterm
_isctype

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy