e64436aeee2605de9aebcfb426f6e4f274d83e414c3bca01e44a852b183f715d | Triage

Submit
Reports

Overview

overview

8

Static

static

e64436aeee...5d.exe

windows7-x64

8

e64436aeee...5d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e64436aeee2605de9aebcfb426f6e4f274d83e414c3bca01e44a852b183f715d.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

e64436aeee2605de9aebcfb426f6e4f274d83e414c3bca01e44a852b183f715d.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

e64436aeee2605de9aebcfb426f6e4f274d83e414c3bca01e44a852b183f715d
Size

417KB
MD5

8cbf51fbec450140d1bf5e145f90b196
SHA1

95fa582d9f091d3b7c5fd81eaf754f7e59e89ec1
SHA256

e64436aeee2605de9aebcfb426f6e4f274d83e414c3bca01e44a852b183f715d
SHA512

947935a63f48385b3ff7a80401cb567afbd06e469329fde70c446d80087315e03c1148b9d370a0848fd98c8ce12c6888837a4ca55edc200ad97137da74bb9da3
SSDEEP

6144:H4f5pjA6EstDkoCDuG6K4nY+zIZJz5GyCY6ootoA4t/T4RgU:6A6ESDkoUuBfqR50YPot3e/Tg

Score

N/A

Malware Config

Signatures

Files

e64436aeee2605de9aebcfb426f6e4f274d83e414c3bca01e44a852b183f715d
.exe windows x86

1683e45a829e045354bf1a0fd5cac0c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileStringA
LoadLibraryExA
GlobalCompact
EnterCriticalSection
GetStdHandle
lstrcpyn
CloseHandle
ExitThread
GlobalAddAtomA
SetCommBreak
GetProcessHeap
GlobalLock
GetCommState
DeleteAtom
VirtualAlloc
RaiseException
GlobalFree
GetOEMCP
GlobalFindAtomA
LocalSize
LoadResource

user32

GetClassInfoExA
ReleaseDC
GetActiveWindow
BeginPaint
GetClassNameA
ValidateRect
GetWindow
DrawEdge
IsIconic
ShowWindow
GetWindowTextA
GetDC
AlignRects
GetFocus
CloseWindow
GetParent
EndPaint
GetForegroundWindow
GetWindowTextLengthA

wsock32

WSAGetLastError
WSAStartup
WSACleanup
WSASetBlockingHook
WSAAsyncGetServByPort

duser

AutoTrace

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy