ee233be027a63cd8ea911517393134a5d5da492289059fbec3c12d1696bf3287 | Triage

Submit
Reports

Overview

overview

8

Static

static

ee233be027...87.exe

windows7-x64

8

ee233be027...87.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ee233be027a63cd8ea911517393134a5d5da492289059fbec3c12d1696bf3287.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ee233be027a63cd8ea911517393134a5d5da492289059fbec3c12d1696bf3287.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ee233be027a63cd8ea911517393134a5d5da492289059fbec3c12d1696bf3287
Size

767KB
MD5

4bc39f8ffc7af554dc8f2814052b09a4
SHA1

8dfb1430eb22ab45bbb9a22c52d3648f83f66f33
SHA256

ee233be027a63cd8ea911517393134a5d5da492289059fbec3c12d1696bf3287
SHA512

7caca4b48916b9245419795387f383ee6269491691f9f66fbf7d6cec14fcaec7051ea804abf50b49d72690be8401d32b548e126b09696fa35ddb42a5a12958e8
SSDEEP

12288:CZL+i65M3z9qg1kujI63sIHsjMdkNRhiDp+nd9ID5tAfUQcN9KZW3jUC:C5jRtVIz3Mqhqp+dQ4cKZWz

Score

N/A

Malware Config

Signatures

Files

ee233be027a63cd8ea911517393134a5d5da492289059fbec3c12d1696bf3287
.exe windows x86

134dda79bb7598364427ae141f2167e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
lstrlenA
CreateMutexA
RemoveDirectoryW
ReleaseMutex
RemoveDirectoryW
ReleaseSemaphore
GetStartupInfoA
VirtualProtectEx
CreateDirectoryW
CreateFileMappingW
GetStdHandle
HeapDestroy
SetLastError
CreatePipe
HeapSize
OpenEventW
CreateFileA
GetCommandLineW
DeleteFileA
SetLastError
GetVersion
LoadLibraryA
GetFileSize
MapViewOfFile

uxtheme

GetThemeTextMetrics
GetThemeTextExtent
DrawThemeEdge
IsThemeActive
OpenThemeData
GetThemeSysSize
GetWindowTheme
SetWindowTheme
CloseThemeData
GetThemeBool
GetThemeColor
DrawThemeBackground
CloseThemeData

hhsetup

??0CFIFOString@@QAE@XZ
??0CFIFOString@@QAE@XZ
??0CFIFOString@@QAE@XZ
??0CFIFOString@@QAE@XZ

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy