e415c0ed52f816ac2439a9fff02dc23008420c81e8619ab6b195948459d3f0bb | Triage

Submit
Reports

Overview

overview

6

Static

static

e415c0ed52...bb.exe

windows7-x64

6

e415c0ed52...bb.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e415c0ed52f816ac2439a9fff02dc23008420c81e8619ab6b195948459d3f0bb.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

e415c0ed52f816ac2439a9fff02dc23008420c81e8619ab6b195948459d3f0bb.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

e415c0ed52f816ac2439a9fff02dc23008420c81e8619ab6b195948459d3f0bb
Size

329KB
MD5

a81f8270cd4629bded75a1f67ad73f61
SHA1

6caff10ed5b15cdea59755b31122565917fb6064
SHA256

e415c0ed52f816ac2439a9fff02dc23008420c81e8619ab6b195948459d3f0bb
SHA512

d1663974ba2fb7b56ae00698ad5f18aec1faf8aa10180ab94e882205456b0539566eb57ad9c1b511a05fb27d95e66500d17ced43da172877549e16b2adedaf8f
SSDEEP

6144:2E5I/WnoeIsJsJi/+PoTew/ROmUPlZfPkVW2ivortxpjS9SX:v5I/3Br0+Pmpz+Vks1vo3pu

Score

N/A

Malware Config

Signatures

Files

e415c0ed52f816ac2439a9fff02dc23008420c81e8619ab6b195948459d3f0bb
.exe windows x86

b7162e5eb159d57b479f5baa68a17d13

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
VirtualAlloc
GetConsoleCP
GetProcessVersion
LocalFileTimeToFileTime
lstrcpynW
Module32Next
FindNextFileA
WriteFile
CreateProcessW
ExitProcess
UpdateResourceW
CopyFileW
GetProfileIntA
GetCommandLineW

mssign32

PvkPrivateKeyAcquireContextFromMemory
SignError
FreeCryptProvFromCert
PvkGetCryptProv
GetCryptProvFromCert

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.CRT
Size: 5KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 279KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy