8e5bbb01d2615eb401b76bf329b29c5f2af1119723c5fe93d3a47e35db228cee | Triage

Submit
Reports

Overview

overview

7

Static

static

8e5bbb01d2...ee.exe

windows7-x64

7

8e5bbb01d2...ee.exe

windows10-2004-x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8e5bbb01d2615eb401b76bf329b29c5f2af1119723c5fe93d3a47e35db228cee.exe

Resource

win7-20221111-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

8e5bbb01d2615eb401b76bf329b29c5f2af1119723c5fe93d3a47e35db228cee.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

8e5bbb01d2615eb401b76bf329b29c5f2af1119723c5fe93d3a47e35db228cee
Size

57KB
MD5

6f82548d0195ddc55545005d93dc2820
SHA1

543792216732e2b31678826d555c24c5b5f379cc
SHA256

8e5bbb01d2615eb401b76bf329b29c5f2af1119723c5fe93d3a47e35db228cee
SHA512

2043c288bec611b428288303a144c8bb5baad0d9bbe0dd0e674464fee43a26627fb36a94fe48a841b774b5a4fad42e13959cfc069a88468a41ae3575a546e6b0
SSDEEP

1536:dZ1UPL3PiAtH7O8tEcOMZeIuB0zA61deeeeeeMeeeeeelS:dAPL3PiAtHK8pNZekzA61CS

Score

N/A

Malware Config

Signatures

Files

8e5bbb01d2615eb401b76bf329b29c5f2af1119723c5fe93d3a47e35db228cee
.exe windows x86

83e195551c0405be3e10beba91bdb643

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessagePos
UnhookWindowsHookEx
GetAsyncKeyState
IsWindowVisible

kernel32

GetWindowsDirectoryW

gdi32

GetStockObject
RemoveFontResourceW

Exports

Exports

RecentlyPlaE
?GetConstitution@@YG_JEPAXUfurrone2897320391401938091831@@WE
?PlanRenew@@YG_JEPAXUfurrone2897320391401938091831@@WE
?SetTownShip@@YG_JEPAXUfurrone2897320391401938091831@@WE
?SnowFestival@@YG_JEPAXUfurrone2897320391401938091831@@WE

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.track
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hold
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy