b5eddce8c8b510820672735f9f73e2e42ce631d549feea3d0892fd3de8ba1fd1 | Triage

Submit
Reports

Overview

overview

8

Static

static

b5eddce8c8...d1.exe

windows7-x64

8

b5eddce8c8...d1.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b5eddce8c8b510820672735f9f73e2e42ce631d549feea3d0892fd3de8ba1fd1.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b5eddce8c8b510820672735f9f73e2e42ce631d549feea3d0892fd3de8ba1fd1.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b5eddce8c8b510820672735f9f73e2e42ce631d549feea3d0892fd3de8ba1fd1
Size

749KB
MD5

d9ce31576dd1fa3422b5364c8a2c7935
SHA1

a94a779e62c44d47de1aaf74f76097f31a8952cb
SHA256

b5eddce8c8b510820672735f9f73e2e42ce631d549feea3d0892fd3de8ba1fd1
SHA512

550f097027e94ba271e2ebbca46e27104bc7e74850c0292806e84aa0d36f24d63abdd35c880a90356ade4229cc48180b81cbe91c84e386ec96818b0e0e76f848
SSDEEP

12288:Tbhe2OQT8r+/FVrFdPqQQSASqNYxqgmMRVUtocWrul+MmgRzlPQz2dtPG3oLaF4K:Re2OQpFdF75qN0RVUto7ul+ERxFThu

Score

N/A

Malware Config

Signatures

Files

b5eddce8c8b510820672735f9f73e2e42ce631d549feea3d0892fd3de8ba1fd1
.exe windows x86

b21014d2f72e99dc4656dce8790f4401

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
WriteFile
RemoveDirectoryA
WriteConsoleW
FindAtomA
CreateDirectoryA
GetVersion
ReleaseMutex
lstrlenA
GetModuleHandleA
FindClose
SetEvent
IsBadCodePtr
ResetEvent
CreateMailslotA
GetCommandLineA
CreateEventA
SetVolumeLabelW
SetStdHandle
RemoveDirectoryA
GetSystemTime
ExitThread
FindClose
VirtualProtectEx
GetFileType

clbcatq

CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup

rasmxs

DeviceEnum
DeviceEnum
DeviceEnum
DeviceEnum

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy