e789231e0d14ab6eb92ff2aa93ffdc8c90761b0cf56cda934eafb07a6ea6d613 | Triage

Submit
Reports

Overview

overview

Static

static

e789231e0d...13.exe

windows7-x64

e789231e0d...13.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e789231e0d14ab6eb92ff2aa93ffdc8c90761b0cf56cda934eafb07a6ea6d613.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

e789231e0d14ab6eb92ff2aa93ffdc8c90761b0cf56cda934eafb07a6ea6d613.exe

Resource

win10v2004-20221111-en

evasion persistence

windows10-2004-x64

14 signatures

150 seconds

General

Target

e789231e0d14ab6eb92ff2aa93ffdc8c90761b0cf56cda934eafb07a6ea6d613
Size

158KB
MD5

bc9a702fabfab0a77f447fbb061c4a21
SHA1

4858a42e73f092e65532c404020f49936dd8e4fb
SHA256

e789231e0d14ab6eb92ff2aa93ffdc8c90761b0cf56cda934eafb07a6ea6d613
SHA512

2990d7aa904a1f503bb1e90ca057a5a3fb1891f78891b942785e5b757480fbf9c2449e42d32ad2ac5b32bc35695d2d7f8c2bcd550165522469e86ea81d08238e
SSDEEP

3072:YDp1111180000m2Bfvon+mKndxQuDdofYRxYv0sSpMU4HBfcwF:pftzCSh4Hd

Score

N/A

Malware Config

Signatures

Files

e789231e0d14ab6eb92ff2aa93ffdc8c90761b0cf56cda934eafb07a6ea6d613
.exe windows x86

ef3a0c6b6b4f845864cd9e2b781d9c93

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
AddAtomA
ExitProcess
ReadFile
SetErrorMode
GetProcAddress
GetModuleHandleA
HeapReAlloc
HeapAlloc
GetCommandLineA
GetProcessHeap

user32

MessageBoxA

Sections

FzSPmHgA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

NcUEmpJm
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy