e6d18afd2c11f7890b294209ce21c71939e77ede059bd8169ceee95811b22eb8 | Triage

Submit
Reports

Overview

overview

8

Static

static

e6d18afd2c...b8.exe

windows7-x64

8

e6d18afd2c...b8.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e6d18afd2c11f7890b294209ce21c71939e77ede059bd8169ceee95811b22eb8.exe

Resource

win7-20221111-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e6d18afd2c11f7890b294209ce21c71939e77ede059bd8169ceee95811b22eb8.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

e6d18afd2c11f7890b294209ce21c71939e77ede059bd8169ceee95811b22eb8
Size

307KB
MD5

7b966ce9cae5e598f359a9d2c70e748f
SHA1

a89905a6c551103c5f7981925a956b66d931ede8
SHA256

e6d18afd2c11f7890b294209ce21c71939e77ede059bd8169ceee95811b22eb8
SHA512

5d29b2e382046d70ab730f48481aa20e2d0d98636b0ceaad56be6e3d3f80f5a00d3091346e84032d09e8cad1c75778896c7cad5909ad5bbbb71ba19d1ee84a1d
SSDEEP

6144:/qJ5QG+msV+ld7/l1Bw79MqZNEJehqAmM6EkMZuzEf79drOgY+:/C+mu+ld7/C2gWJeQLztMZP9dJ

Score

N/A

Malware Config

Signatures

Files

e6d18afd2c11f7890b294209ce21c71939e77ede059bd8169ceee95811b22eb8
.exe windows x86

0b5c782e53032ad85ef1e660cf9ec6d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
SetEvent
GetDriveTypeW
GetTickCount
CreateFileA
GetCommandLineA
GetComputerNameW
GetDiskFreeSpaceW
GetLocalTime
GetFileAttributesW
HeapCreate
ReleaseMutex
GetProcessHeap
FindAtomA
LocalFree
ReleaseMutex
CloseHandle
CreateThread
LoadLibraryW
lstrcpynA

user32

CallWindowProcA
DispatchMessageA
CloseWindow
SetFocus
GetClassInfoA
CreateWindowExA
FillRect
DestroyCaret
DrawStateA
GetClipCursor
GetKeyState
GetComboBoxInfo
GetDlgItem

cryptnet

CryptGetObjectUrl
CertDllVerifyCTLUsage
CryptInstallCancelRetrieval
CryptGetTimeValidObject
CryptCancelAsyncRetrieval

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy