f999ee2381b4cf07c4f9da2aef1a9c6167f1134dbb94532c708ce0b3f2fac38c | Triage

Submit
Reports

Overview

overview

3

Static

static

f999ee2381...8c.exe

windows7-x64

3

f999ee2381...8c.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f999ee2381b4cf07c4f9da2aef1a9c6167f1134dbb94532c708ce0b3f2fac38c.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f999ee2381b4cf07c4f9da2aef1a9c6167f1134dbb94532c708ce0b3f2fac38c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f999ee2381b4cf07c4f9da2aef1a9c6167f1134dbb94532c708ce0b3f2fac38c
Size

28KB
MD5

26cb201177386db884c4c24856d0ab81
SHA1

dcb22b83a956a44176bab9c1bcd7db5e4c91bc5e
SHA256

f999ee2381b4cf07c4f9da2aef1a9c6167f1134dbb94532c708ce0b3f2fac38c
SHA512

eb5a4c555ae07c314d5b9c463bae47428c4517ce54bc5e7f26c8e43c77b6c77e7f66efd6575f4fe15bef05f4fcbca2e1f74f9d0d945c1a39957c6f6597fc8b10
SSDEEP

768:31ItImsPIjbXKE15JgKBrLjGB+plWWjagS4:31ItI7eXKoaKoB+poMan

Score

N/A

Malware Config

Signatures

Files

f999ee2381b4cf07c4f9da2aef1a9c6167f1134dbb94532c708ce0b3f2fac38c
.exe windows x86

748fbb4e210c108426b82463c786b5f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetProcessVersion
MoveFileA
VirtualProtectEx
ExitProcess

ntdll

ZwConnectPort
RtlEqualUnicodeString
NtSetDefaultUILanguage
ZwMapUserPhysicalPagesScatter

user32

CharUpperA
CheckMenuItem
EmptyClipboard
DeferWindowPos

Exports

Exports

WriteBjwjpos
SetHeewnibto
EndHpvwpqvwl
SetJmyseyom

Sections

.text
Size: 4KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.lrq1lr
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy