3e4af99265538840a35f68cc11f530eea457d34eece3bd5051e30149b1d30633 | Triage

Submit
Reports

Overview

overview

8

Static

static

3e4af99265...33.exe

windows7-x64

8

3e4af99265...33.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3e4af99265538840a35f68cc11f530eea457d34eece3bd5051e30149b1d30633.exe

Resource

win7-20221111-en

evasion persistence upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

3e4af99265538840a35f68cc11f530eea457d34eece3bd5051e30149b1d30633.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3e4af99265538840a35f68cc11f530eea457d34eece3bd5051e30149b1d30633
Size

249KB
MD5

35e05678c6bd11b884a7d9a6c00e5093
SHA1

bee691f9c4310320cb2e5681034ea7d73bd4004e
SHA256

3e4af99265538840a35f68cc11f530eea457d34eece3bd5051e30149b1d30633
SHA512

155dd344b0628331bbbd2378b6476facccf4f602fdd756e2fdead847f9e2f9991980ac5eaec109225b38b021fd106076bd59f8108d9cf1b129946ea6d1e0303f
SSDEEP

6144:9BHaosPOvb27I91wkpzPQ/d45JCxlZd4izCW5rRhg2R:9BgPOvb27SJm45OOizCW5NR

Score

N/A

Malware Config

Signatures

Files

3e4af99265538840a35f68cc11f530eea457d34eece3bd5051e30149b1d30633
.exe windows x86

cc88cf1bbf7ec27964291974432c3de8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
CreateFileA
CloseHandle
DeleteFileA
ExitProcess
GetTickCount
GetFileSize
GetModuleHandleA
InitializeCriticalSection
AddAtomA
SetEndOfFile
SuspendThread
GetCurrentDirectoryA
FindClose
WaitForSingleObject
GetSystemInfo
HeapCreate
GetEnvironmentVariableA
GetStartupInfoW
GetTickCount
HeapSize
FindClose
ResetEvent
HeapDestroy
ReleaseMutex

wininet

HttpQueryInfoA
HttpEndRequestA
FtpGetFileA
FtpDeleteFileA
DeleteUrlCacheEntryA
DeleteUrlCacheEntryA
FtpOpenFileA
FtpFindFirstFileA
FtpGetCurrentDirectoryA
FtpPutFileA
FtpCreateDirectoryA
DeleteUrlCacheEntryA
FindCloseUrlCache

mscpxl32

ConfigureDlgProc
ConfigureDlgProc
ConfigureDlgProc
ConfigureDlgProc

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 243KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy