e0cf4ba477b8b1fc32f680f5b228048da2f5d84343c3b281e7377468d323f068 | Triage

Submit
Reports

Overview

overview

8

Static

static

e0cf4ba477...68.exe

windows7-x64

8

e0cf4ba477...68.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e0cf4ba477b8b1fc32f680f5b228048da2f5d84343c3b281e7377468d323f068.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e0cf4ba477b8b1fc32f680f5b228048da2f5d84343c3b281e7377468d323f068.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

e0cf4ba477b8b1fc32f680f5b228048da2f5d84343c3b281e7377468d323f068
Size

768KB
MD5

02798f09308cce08376964d975a4d858
SHA1

a5161cebc7a6ebdc3e2fc8730016aa109ac3fbdb
SHA256

e0cf4ba477b8b1fc32f680f5b228048da2f5d84343c3b281e7377468d323f068
SHA512

1677f200cf233c7f10e6a8ec4264f819bdf5298f1b6803facd322dfced6db58d6392cfe0cf9b343f8c144e1bef2e07115ea86429254839159a869d4d5944224c
SSDEEP

12288:0Gt+fA3h2W2OAyxBJSH9YHkfRSzMBHH2gWRkPF+C4lcgE+L:0GxAWNT49YEfRSGa6+u

Score

N/A

Malware Config

Signatures

Files

e0cf4ba477b8b1fc32f680f5b228048da2f5d84343c3b281e7377468d323f068
.exe windows x86

21b3682ab07fcebab291be4bd7405c45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
CreateSemaphoreA
Sleep
GetLocalTime
SetLastError
GetStdHandle
HeapSize
CreateHardLinkW
GetFileAttributesA
GlobalFree
GetPriorityClass
DeleteFileW
GetStartupInfoA
ReadConsoleW
CreateMutexW
SetEvent
GetProcessHeap
GetTickCount
CreateDirectoryW
VirtualProtect
SetLastError

wintrust

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

traffic

TcAddFlow
TcDeleteFlow
TcAddFilter
TcDeleteFilter

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy