e0af1fb8e8011e115a526c7161ceea2f0d477b9372066dbbabea1746ba659737 | Triage

Submit
Reports

Overview

overview

Static

static

e0af1fb8e8...37.exe

windows7-x64

e0af1fb8e8...37.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e0af1fb8e8011e115a526c7161ceea2f0d477b9372066dbbabea1746ba659737.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

e0af1fb8e8011e115a526c7161ceea2f0d477b9372066dbbabea1746ba659737.exe

Resource

win10v2004-20221111-en

evasion persistence

windows10-2004-x64

4 signatures

150 seconds

General

Target

e0af1fb8e8011e115a526c7161ceea2f0d477b9372066dbbabea1746ba659737
Size

67KB
MD5

827586e1962dfc0ebfedf0660636c1cc
SHA1

c9486d2965c6d4e16b40daf996c7bf2c4eaed461
SHA256

e0af1fb8e8011e115a526c7161ceea2f0d477b9372066dbbabea1746ba659737
SHA512

bd42e9ed03e95b39b2ae89ad408945e9bd2a2eb65c57977cfe398cbfadd4ba87753c88f349e4df7f9644621e492934fe2f3274714ffc46ac836b7450c9add54f
SSDEEP

1536:cBQXMYmcZ2ks+2AA8m+FTzrZ8mY+bm9PZ/umrigawUmXiJ:cSFZ4Fynjjb8PZ/CgawUyiJ

Score

N/A

Malware Config

Signatures

Files

e0af1fb8e8011e115a526c7161ceea2f0d477b9372066dbbabea1746ba659737
.exe windows x86

21de45bfb1500c358b6b0b419ceee17a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetActiveWindow
EnumWindows
SetWindowTextA
GetWindowThreadProcessId
DialogBoxParamA
SetWindowTextW
IsCharAlphaA
SetDlgItemTextW

ole32

CoRevokeClassObject

comctl32

InitCommonControlsEx

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

kernel32

HeapDestroy
GetStartupInfoA
HeapFree
IsBadReadPtr
GetNumberOfConsoleMouseButtons
GetTickCount
GetDateFormatA
LoadResource
FindResourceA
LocalAlloc
LoadLibraryA
FreeLibrary
GetProcAddress
GetModuleHandleA
HeapCreate
DeleteCriticalSection
InitializeCriticalSection
LocalFree
IsValidLanguageGroup

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy