e82a1d4099e80b77359b64d8212ff14e504d60630b79b3fc11aa0b902a5c30a2 | Triage

Submit
Reports

Overview

overview

Static

static

e82a1d4099...a2.exe

windows7-x64

e82a1d4099...a2.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e82a1d4099e80b77359b64d8212ff14e504d60630b79b3fc11aa0b902a5c30a2.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e82a1d4099e80b77359b64d8212ff14e504d60630b79b3fc11aa0b902a5c30a2.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

e82a1d4099e80b77359b64d8212ff14e504d60630b79b3fc11aa0b902a5c30a2
Size

59KB
MD5

93884a3704543ec23f2c6848c455a4ef
SHA1

4c979ab597e289e69637c58c683e4d5fbcb60209
SHA256

e82a1d4099e80b77359b64d8212ff14e504d60630b79b3fc11aa0b902a5c30a2
SHA512

711de30c9f5b218712b0fd41b0d68ca54a5bd8846a5d49b50391abafa2e087e6343225d28f81f51899d4af5c43d8daade208512e9dd7cd90bdda38f5cf2385e5
SSDEEP

768:oCKavJrUNBTvJtfKIPjMfj4VQIFIxMeCaVMIJsIMuKtnhe4gjV9BmomTqQrm+h6:oCJJr87KIgrPetpISIyhOYomJ

Score

N/A

Malware Config

Signatures

Files

e82a1d4099e80b77359b64d8212ff14e504d60630b79b3fc11aa0b902a5c30a2
.exe windows x86

652b3f9aebac0676cec53e70f879e70e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateEventW
SetFileTime
IsBadWritePtr
GetStartupInfoW
GetFileSize
HeapSize
LeaveCriticalSection
GetExitCodeProcess
InterlockedExchange
GetLastError
GetModuleHandleA
SetFileTime
lstrcpyW
SetFileTime
lstrcatA
LoadLibraryA
SetConsoleTitleW
HeapCreate
CloseHandle
ReadFileEx
GetStringTypeA

mstscax

DllGetClassObject
DllUnregisterServer
DllRegisterServer
DllCanUnloadNow

shell32

SHGetMalloc
SHFree
SHGetDiskFreeSpaceA
DuplicateIcon
ShellAboutA
StrChrA
ExtractIconA
SHGetSettings
DragFinish
DllUnregisterServer
ShellMessageBoxW
DragQueryFileA
DragAcceptFiles

rasapi32

DwRasUninitialize

Sections

.text
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ole
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy