ec51f3a07e85aa9a8bc14c9b24cc253f5e15d2c4fb7bb7d4d1a1093e3badd706 | Triage

Submit
Reports

Overview

overview

3

Static

static

ec51f3a07e...06.exe

windows7-x64

3

ec51f3a07e...06.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ec51f3a07e85aa9a8bc14c9b24cc253f5e15d2c4fb7bb7d4d1a1093e3badd706.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec51f3a07e85aa9a8bc14c9b24cc253f5e15d2c4fb7bb7d4d1a1093e3badd706.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

ec51f3a07e85aa9a8bc14c9b24cc253f5e15d2c4fb7bb7d4d1a1093e3badd706
Size

9.0MB
MD5

7d2159e99338ed508b167d99022bf820
SHA1

63082caa4fa61a5ea1d84698a0824e049f5bbc00
SHA256

ec51f3a07e85aa9a8bc14c9b24cc253f5e15d2c4fb7bb7d4d1a1093e3badd706
SHA512

6dc7ba99004e39cd7d0350a8b047b6729b08864af5f09dd98dc31a820af75d1254ac4efcebe1ed5d81a8e80bcb3d6ab0607d0fc1ea0e8fdf818cc27b8d7cd1b7
SSDEEP

196608:pR7vXNxAGbBk7Ksh5MRvR6f6GC8pqVRGTzTDEsT6u6z1kZJMZ:pp/AsBCKiSRpK6GxpqW3EsT6rkZA

Score

N/A

Malware Config

Signatures

Files

ec51f3a07e85aa9a8bc14c9b24cc253f5e15d2c4fb7bb7d4d1a1093e3badd706
.exe windows x86

4ce9de71542d0445b11dd8e1502f55b0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteMetaFile
DeleteObject
TextOutW
Ellipse
LPtoDP
GetStockObject
GetDeviceCaps
IntersectClipRect
GetWindowExtEx
CreatePen

kernel32

LCMapStringW
LoadResource
WaitForSingleObject
MultiByteToWideChar
GetACP
GetLocaleInfoA
LocalFree
SetUnhandledExceptionFilter
TlsGetValue
CreateEventA
FindClose
RtlUnwind
VirtualFree
GetCurrentThread
GetCurrentProcessId
GetCommandLineW
HeapCreate
CreateEventW
VirtualQuery
OpenEventA
_lopen
InterlockedDecrement

user32

GetWindowLongW
ReleaseCapture
DestroyIcon
SetWindowLongW
EndPaint
GetWindowRect
CharUpperW
SetWindowLongA
SetFocus
SetCursor
MapWindowPoints
DefWindowProcA
GetKeyState
DispatchMessageW

advapi32

LookupAccountSidW
ChangeServiceConfigW
CryptGetProvParam
DuplicateTokenEx
SetSecurityDescriptorGroup
CryptReleaseContext

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy