e572b2d0edcde0bfa61283bb32b3c436e19e91f936fcd4c71d94b28f86841aef | Triage

Submit
Reports

Overview

overview

8

Static

static

e572b2d0ed...ef.exe

windows7-x64

8

e572b2d0ed...ef.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e572b2d0edcde0bfa61283bb32b3c436e19e91f936fcd4c71d94b28f86841aef.exe

Resource

win7-20220901-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e572b2d0edcde0bfa61283bb32b3c436e19e91f936fcd4c71d94b28f86841aef.exe

Resource

win10v2004-20221111-en

discovery persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

e572b2d0edcde0bfa61283bb32b3c436e19e91f936fcd4c71d94b28f86841aef
Size

749KB
MD5

7dad4d102fae9d7e7ba9d558b00e9351
SHA1

657f1aba85ae19531d1095b9dd3f9d50fb673a0d
SHA256

e572b2d0edcde0bfa61283bb32b3c436e19e91f936fcd4c71d94b28f86841aef
SHA512

963a09a1679213058155eccb22cc99a3e77a4ae0bbcfca312bc9cb86726a4fd15afb758cf07758b24e6d852bbe0a91a20a8ed1d538d631ce2ffd47d0ac3fa3d9
SSDEEP

12288:OV9QJIFSszNHw9aF5E5tJRoK1xnyK2vSublhqaX7JXVwCt0DOAtNgwrjswXRE44N:OV9MIXuaF5E5tAEnyPSwTwCG69Us5+4B

Score

N/A

Malware Config

Signatures

Files

e572b2d0edcde0bfa61283bb32b3c436e19e91f936fcd4c71d94b28f86841aef
.exe windows x86

d4716e0d182a67b380ece47154bc121d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMailslotW
HeapFree
FindClose
RemoveDirectoryA
CreateDirectoryW
GetCommandLineA
WriteFile
ResetEvent
FindClose
GetLastError
SetStdHandle
GetModuleHandleA
SetLocalTime
VirtualProtectEx
GetFileType
CreateEventW
SetEvent
CreateFileMappingW
WriteConsoleW
ReleaseMutex
Sleep
lstrlenA
DeleteFileA
OpenEventA
RemoveDirectoryA

uxtheme

CloseThemeData
DrawThemeEdge
OpenThemeData
GetThemeBool
CloseThemeData
GetThemeTextExtent
SetWindowTheme
GetWindowTheme
DrawThemeBackground
GetThemeColor
GetThemeTextMetrics
IsThemeActive
GetThemeSysSize

cmcfg32

CMConfig
CMConfig
CMConfig
CMConfig

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy