e9bc355ce241c49039aaf205e6271759f249e8dd0b773fa783725883d10ed2b2 | Triage

Submit
Reports

Overview

overview

1

Static

static

e9bc355ce2...b2.exe

windows7-x64

1

e9bc355ce2...b2.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e9bc355ce241c49039aaf205e6271759f249e8dd0b773fa783725883d10ed2b2.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

e9bc355ce241c49039aaf205e6271759f249e8dd0b773fa783725883d10ed2b2.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

e9bc355ce241c49039aaf205e6271759f249e8dd0b773fa783725883d10ed2b2
Size

820KB
MD5

13e20d3f9bdfd1b34e49eba353ec756c
SHA1

bc8922c89c0a3552bc4f1d8aaa2a44011187522f
SHA256

e9bc355ce241c49039aaf205e6271759f249e8dd0b773fa783725883d10ed2b2
SHA512

8ab1eaa66a384500f2837b281d2025bc759d2256ac0e1dd098e1c3e5c53984e2386459a7f02bb430cfa7bcc6e2b058397dd8859c4124011e0fc58d332fe17559
SSDEEP

12288:rCEwRM59N0YtSLvwthus1riRvo7Rm/fGN1knP4PQexsKQek6ZTaHdn7QjtAMP84G:rwRM59NBtyTe4+jP2uadn7QZAMPztg

Score

N/A

Malware Config

Signatures

Files

e9bc355ce241c49039aaf205e6271759f249e8dd0b773fa783725883d10ed2b2
.exe windows x86

0a6bf775ed64505a747bf8909ba189d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
ResetEvent
GetExitCodeProcess
VirtualAlloc
GlobalSize
CreateEventA
ResumeThread
GetPrivateProfileIntW
CreateMutexA
GetStdHandle
FindVolumeClose
LocalFree
GetCommandLineA
GetModuleHandleW
lstrlenA
CloseHandle
InterlockedExchange
GetACP
GetEnvironmentVariableW
WriteFile

advapi32

ClearEventLogA
IsValidSid
RegDeleteKeyA
IsValidAcl
CreateServiceA
RegCreateKeyExW
RegCloseKey
ControlService
RegDeleteValueA
CloseEventLog
RegEnumKeyW
IsTextUnicode
RegQueryValueW

admparse

ResetAdmDirtyFlag
ResetAdmDirtyFlag
AdmClose
ResetAdmDirtyFlag
ResetAdmDirtyFlag

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 810KB - Virtual size: 810KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy