ec17aef4805a6a5ee370c3b15fc4de534e4f5846eb7908b8540a4399185be3c3 | Triage

Submit
Reports

Overview

overview

8

Static

static

ec17aef480...c3.exe

windows7-x64

8

ec17aef480...c3.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ec17aef4805a6a5ee370c3b15fc4de534e4f5846eb7908b8540a4399185be3c3.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec17aef4805a6a5ee370c3b15fc4de534e4f5846eb7908b8540a4399185be3c3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ec17aef4805a6a5ee370c3b15fc4de534e4f5846eb7908b8540a4399185be3c3
Size

745KB
MD5

9c363e568bd7320588154fc02bba4b36
SHA1

a8470111fe44b5470788e3c7e8d4964e791773d1
SHA256

ec17aef4805a6a5ee370c3b15fc4de534e4f5846eb7908b8540a4399185be3c3
SHA512

c71acbf1b0cad2e816bbcdc7de2606d54540bbeca996b7ff65d8b594c7040c796f343da35fee81b5804969d67e9e42f70791a1782310c32d89d38f13e9ff74e8
SSDEEP

12288:eubQpGW0eXnmAR3LCqKp17OZ5eWM43YeCfZl+10T7Xs0RNfBcYdHHNVE6FT6+Qk1:PbQNjmAR+1p2MH9+w3RNfB7BHJV6+nYG

Score

N/A

Malware Config

Signatures

Files

ec17aef4805a6a5ee370c3b15fc4de534e4f5846eb7908b8540a4399185be3c3
.exe windows x86

b8076e0d6e4099560586ab70ae9f5019

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetModuleHandleA
GetFileSize
SetEndOfFile
CreateFileA
HeapSize
RemoveDirectoryA
EnterCriticalSection
GetFileAttributesA
IsBadReadPtr
SetLastError
CloseHandle
ExitProcess
SetFileAttributesW
DeleteFileW
GetCurrentDirectoryA
VirtualAlloc
ReadFile
SuspendThread
GetEnvironmentVariableA
SetLastError
FindAtomW
GetCommandLineA
WaitForSingleObject
GetVersion

cryptui

CryptUIDlgFreeCAContext
CryptUIWizBuildCTL
DllUnregisterServer
CryptUIDlgFreeCAContext
LocalEnroll
CryptUIWizImport
LocalEnrollNoDS
CryptUIDlgFreeCAContext
CryptUIDlgSelectStoreA
CryptUIWizExport
CryptUIDlgViewContext
CryptUIWizDigitalSign
DllRegisterServer

cmpbk32

PhoneBookFreeFilter
PhoneBookFreeFilter
PhoneBookFreeFilter
PhoneBookFreeFilter

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 737KB - Virtual size: 737KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy