ea0883b0c841913106f2c8a0a8419a475eeea1c7c6f12cf687712191ca9c5e7b | Triage

Submit
Reports

Overview

overview

3

Static

static

ea0883b0c8...7b.exe

windows7-x64

3

ea0883b0c8...7b.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ea0883b0c841913106f2c8a0a8419a475eeea1c7c6f12cf687712191ca9c5e7b.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ea0883b0c841913106f2c8a0a8419a475eeea1c7c6f12cf687712191ca9c5e7b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ea0883b0c841913106f2c8a0a8419a475eeea1c7c6f12cf687712191ca9c5e7b
Size

100KB
MD5

cd612a393ff8a5a56aa2d06f5fb11b71
SHA1

b801f8d86a40da0df9d991ad5c1d7969301dab2a
SHA256

ea0883b0c841913106f2c8a0a8419a475eeea1c7c6f12cf687712191ca9c5e7b
SHA512

6b4ec81e3bd460d307c80c2511278c7ed4559ffb17bb6089894953026118d292a9bfbb361fd7590f9548ac2b30a0431ca71aea779e53143a66b68acd051ceb85
SSDEEP

3072:aJvZAnyh2fTTp3Tc71P+SqKigm8yZED+ZxK3:sSFfT1Tc7ZZqPgH+S3

Score

N/A

Malware Config

Signatures

Files

ea0883b0c841913106f2c8a0a8419a475eeea1c7c6f12cf687712191ca9c5e7b
.exe windows x86

4657f45b775ddc130087ac74a6b9560e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
FreeLibrary
GetCommandLineA
GetStartupInfoA
ExitProcess

ntdll

RtlCheckRegistryKey
ZwQueryDefaultUILanguage
iscntrl
RtlGetControlSecurityDescriptor
_strcmpi
RtlUpcaseUnicodeStringToAnsiString
ZwSetInformationProcess
CsrAllocateMessagePointer
RtlAppendUnicodeStringToString
NtSetIoCompletion
NtSetInformationToken
RtlPinAtomInAtomTable
RtlFindSetBits
NtWaitForMultipleObjects
ZwOpenKey
CsrClientConnectToServer
tolower
ZwImpersonateThread
NtCreateJobObject
RtlEqualLuid

Exports

Exports

Qgwqgfgkbbx

Sections

.m78
Size: 4KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_PAGELK
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy