e8052727f0a4d5a10e390c4b3debe48baad25489c8e2a38ed8a88d8aa81903db | Triage

Submit
Reports

Overview

overview

8

Static

static

e8052727f0...db.exe

windows7-x64

8

e8052727f0...db.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e8052727f0a4d5a10e390c4b3debe48baad25489c8e2a38ed8a88d8aa81903db.exe

Resource

win7-20221111-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e8052727f0a4d5a10e390c4b3debe48baad25489c8e2a38ed8a88d8aa81903db.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

e8052727f0a4d5a10e390c4b3debe48baad25489c8e2a38ed8a88d8aa81903db
Size

768KB
MD5

74c5f5072a7b0e65752e4cc9d39b404c
SHA1

e80cc27b269cd0095545c2e010a68b9a1aa0cd82
SHA256

e8052727f0a4d5a10e390c4b3debe48baad25489c8e2a38ed8a88d8aa81903db
SHA512

fb0e2558611f719902a6115b0476aadd2dfb9b5767c8f4e1d782041c3cbca89ba4a018e494bbf458cef73b7b8e5707f15a2bd98165d0364f92c63b875fb9c2b6
SSDEEP

12288:7rlEnleX72Oo7Bt3LyXUgbQDfWyx30d35PWTJQF+jJJH/1yCMkrj5jCNz8r:7Slerx6WJQvxq35PmJQ+JJfbM2+4

Score

N/A

Malware Config

Signatures

Files

e8052727f0a4d5a10e390c4b3debe48baad25489c8e2a38ed8a88d8aa81903db
.exe windows x86

71fdfa15f52210a90529151ec9cdef0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
ReadConsoleW
LoadLibraryA
SetLastError
GlobalFree
SetEvent
CreateHardLinkW
VirtualProtectEx
CloseHandle
CreateDirectoryW
GetTickCount
CreateSemaphoreA
SetLastError
GetStartupInfoA
GetFileAttributesA
GetProcessHeap
DeleteFileW
lstrlenA
GetLocalTime
CreateMutexA
Sleep

rsaenh

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

traffic

TcDeleteFilter
TcAddFlow
TcDeleteFlow
TcAddFilter

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy