ec5c25cb06928e14d77c9490c0d39a9880d411b12a609c5bf1d66423e63cf4e2 | Triage

Submit
Reports

Overview

overview

Static

static

ec5c25cb06...e2.exe

windows7-x64

ec5c25cb06...e2.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ec5c25cb06928e14d77c9490c0d39a9880d411b12a609c5bf1d66423e63cf4e2.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec5c25cb06928e14d77c9490c0d39a9880d411b12a609c5bf1d66423e63cf4e2.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

11 signatures

150 seconds

General

Target

ec5c25cb06928e14d77c9490c0d39a9880d411b12a609c5bf1d66423e63cf4e2
Size

169KB
MD5

5c56ea3d6d21c27d0fb9356a9f92e150
SHA1

2a8c4844ee4a144bb1984a9558ba8cb603636f38
SHA256

ec5c25cb06928e14d77c9490c0d39a9880d411b12a609c5bf1d66423e63cf4e2
SHA512

9f2085b67173ed27559521f5a8ccd601dcbb36f950e9612448adff1dc2e74ffbba3b72d3bdcd00000e1e227aabaeab57795b061b762248142c208e1dfb4d5ae3
SSDEEP

3072:/OU2qZ9G0IIxVcnvHVWp1+NvcNRcjX7kwUeD/D0GH0i:/OU2/Ia1e1qv7jXZcG

Score

N/A

Malware Config

Signatures

Files

ec5c25cb06928e14d77c9490c0d39a9880d411b12a609c5bf1d66423e63cf4e2
.exe windows x86

bb0c215e58208491600e854a646e554f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

winspool.drv

ClosePrinter

kernel32

GetVersionExA
FreeLibrary
GetTempPathA
LoadLibraryA
GetModuleHandleA
CreateProcessA
DeleteFileA
GetVersionExA
CreateDirectoryA
GetFileAttributesA
GetCurrentProcessId
CompareStringA
InterlockedExchange
GetModuleHandleA
GetWindowsDirectoryA
GetSystemDirectoryA
FlushInstructionCache
VirtualQuery
GetVersion
SetLastError
CloseHandle
QueryPerformanceCounter

shell32

SHLimitInputEdit
ShellExecuteA

advapi32

RegQueryValueExW
RegOpenKeyExW
ElfNumberOfRecords
RegSetValueExW
RegCreateKeyExW
RegCloseKey

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy