efa8652c3a1a53db165f53a9c922bd7a5032b463db7f5acfd51cf5e867618599 | Triage

Submit
Reports

Overview

overview

3

Static

static

efa8652c3a...99.exe

windows7-x64

1

efa8652c3a...99.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

efa8652c3a1a53db165f53a9c922bd7a5032b463db7f5acfd51cf5e867618599.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

efa8652c3a1a53db165f53a9c922bd7a5032b463db7f5acfd51cf5e867618599.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

efa8652c3a1a53db165f53a9c922bd7a5032b463db7f5acfd51cf5e867618599
Size

85KB
MD5

f026195033727b55933b3271ff3e83c8
SHA1

2ea9f1a57856d8f2c9e02cba2558ef689a1fab8b
SHA256

efa8652c3a1a53db165f53a9c922bd7a5032b463db7f5acfd51cf5e867618599
SHA512

d737af46d27142117bf23f84ed7c2102f3aa61d8d5c1cd727186027f5e4968b4c567c511c5c6f7093162ccb9a2e24a437e3805b1d1ae558f81b4dc508ef928c4
SSDEEP

1536:35ZfcizW0oo0QCHI484Ot6LEzdVZD9s3zw0m7ZLf7Ix8IqA1+IanQ1Ehuyz:3X0f0o0CHlEt6Izdi3M0mV70iIqA1baz

Score

N/A

Malware Config

Signatures

Files

efa8652c3a1a53db165f53a9c922bd7a5032b463db7f5acfd51cf5e867618599
.exe windows x86

2c35ed123bf7fb5532653325910c7a41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
VirtualAlloc
VirtualFree

Sections

CODE
Size: 54KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RCryptor
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.llydd
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy