ee70d24fd798c79cfffa3599c609ded560b242d86556d29173199ffca9c60c67 | Triage

Submit
Reports

Overview

overview

1

Static

static

ee70d24fd7...67.exe

windows7-x64

1

ee70d24fd7...67.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ee70d24fd798c79cfffa3599c609ded560b242d86556d29173199ffca9c60c67.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ee70d24fd798c79cfffa3599c609ded560b242d86556d29173199ffca9c60c67.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ee70d24fd798c79cfffa3599c609ded560b242d86556d29173199ffca9c60c67
Size

20.0MB
MD5

e1123d8b0cff1361dcad66a8b3322d63
SHA1

b797418a16c99f0c0a416ff78055d1923076598e
SHA256

ee70d24fd798c79cfffa3599c609ded560b242d86556d29173199ffca9c60c67
SHA512

c1c1d2f79736d79dfafc28488962b633b74b20eb420722d5d91a241e711e2778a8b757fe53dc38574302e2c8e8069b943c86427bcf7e41268bb1df5bbf2703e2
SSDEEP

393216:v8ctHzjxbXp+CxLK7QIgZOmlnoA1Pn8IijP76H+4rzHJa+vYAclSDvzgPhDAsXq:USTNbtUQIgZrloA1P8IijPCY+AAnfgPO

Score

N/A

Malware Config

Signatures

Files

ee70d24fd798c79cfffa3599c609ded560b242d86556d29173199ffca9c60c67
.exe windows x86

e070b9677425a65ad12a0c4dd16cb0c9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
WriteFile
RtlUnwind
ReadFile
DeleteCriticalSection
GetSystemTimeAsFileTime
GetTickCount
InterlockedIncrement
UnmapViewOfFile
CreateFileW
GetCurrentThread
lstrlenA
GetModuleFileNameA
GetCurrentThreadId
GetOEMCP
lstrcpyA
LCMapStringW
GetCurrentProcessId
CloseHandle
MultiByteToWideChar

user32

GetDesktopWindow
PostMessageA
SendMessageW
DefWindowProcA
ReleaseDC
TranslateMessage
GetParent
EndDialog
LoadStringA
IsWindowVisible
PostThreadMessageW
GetClientRect
LoadImageW
GetForegroundWindow
SetForegroundWindow

gdi32

SetROP2
CreateMetaFileW
CreateCompatibleDC
CreateRectRgnIndirect
CombineRgn
SetRectRgn
DeleteMetaFile

advapi32

SetSecurityDescriptorGroup
CryptDestroyHash
CryptSetHashParam

Sections

.text
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy