ca45e63ffce8f4e15101ffea0fe915738262be881c4afacf0b97b15135d22deb | Triage

Submit
Reports

Overview

overview

1

Static

static

ca45e63ffc...eb.exe

windows7-x64

1

ca45e63ffc...eb.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ca45e63ffce8f4e15101ffea0fe915738262be881c4afacf0b97b15135d22deb.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca45e63ffce8f4e15101ffea0fe915738262be881c4afacf0b97b15135d22deb.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ca45e63ffce8f4e15101ffea0fe915738262be881c4afacf0b97b15135d22deb
Size

143KB
MD5

ea59dad524d1e80b531634078574d097
SHA1

301c64de5273587e02de75e2305706ea9bbe3f38
SHA256

ca45e63ffce8f4e15101ffea0fe915738262be881c4afacf0b97b15135d22deb
SHA512

6f13e0f9f552cab85f6dda0fcdaf1a1b5b4f57f0596ec7433f0ff057305f582a0da35eadac40aa8c5ad0f11b53b843bfce9694150fa52328a08881dec7ff6400
SSDEEP

3072:KsSx9+n0glL0wfQFMj9mq+voe7sZethl5lvQMpa:Kbx9+nVlL0wf6kwoD6phU

Score

N/A

Malware Config

Signatures

Files

ca45e63ffce8f4e15101ffea0fe915738262be881c4afacf0b97b15135d22deb
.exe windows x86

dce19b94ba5391635fe2150e603bb5dd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
IsDebuggerPresent
MoveFileExA
TransactNamedPipe
GetStartupInfoA
GetModuleHandleA
DeleteCriticalSection
TransmitCommChar
GetBinaryTypeA
GetCommandLineA
GetConsoleCursorInfo
FindFirstFileA
TlsGetValue
UnregisterWaitEx

user32

SetMenuDefaultItem
SwitchDesktop
IsCharAlphaW
CharUpperBuffA
DdeClientTransaction
EnumDisplaySettingsW
SetKeyboardState
CreateDesktopA
GetActiveWindow
LoadKeyboardLayoutW

msvcrt

_XcptFilter
__p__fmode
_except_handler3
_initterm
__getmainargs
__p__commode
_controlfp
_exit
_adjust_fdiv
exit
memcpy
__setusermatherr
__set_app_type
_acmdln

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy