eca5bb0b2a3e942fca6ba4f6b8012d84a8a5ab0d4701ed1b3f3e6d330ed8f3c7 | Triage

Submit
Reports

Overview

overview

6

Static

static

eca5bb0b2a...c7.exe

windows7-x64

6

eca5bb0b2a...c7.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

eca5bb0b2a3e942fca6ba4f6b8012d84a8a5ab0d4701ed1b3f3e6d330ed8f3c7.exe

Resource

win7-20220901-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

eca5bb0b2a3e942fca6ba4f6b8012d84a8a5ab0d4701ed1b3f3e6d330ed8f3c7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

eca5bb0b2a3e942fca6ba4f6b8012d84a8a5ab0d4701ed1b3f3e6d330ed8f3c7
Size

216KB
MD5

9e2550b61c1f8ac0b5cc713bd7e9216c
SHA1

a4eb7af4c0ea27e00b93a397f26da7ae909bde4d
SHA256

eca5bb0b2a3e942fca6ba4f6b8012d84a8a5ab0d4701ed1b3f3e6d330ed8f3c7
SHA512

78ba7841ff80856d36940ba17bca896df858bf25091b6cb163619356fbd67fae2741e93ac1aa3f2bbe2f613d5cce232427b52573f0cd1561818adc297612df76
SSDEEP

6144:3m/HB6KrBb+rnouN2NsGLj5/GjZVKKEG3xugvnuKvJT:3SvMroZNsGLjyVK3G3tvJ

Score

N/A

Malware Config

Signatures

Files

eca5bb0b2a3e942fca6ba4f6b8012d84a8a5ab0d4701ed1b3f3e6d330ed8f3c7
.exe windows x86

3a049020fd4528cc886c9fff01dce0db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleRegGetUserType
CLSIDFromString
CLSIDFromProgID
CoReleaseMarshalData
CoCreateInstanceEx
StringFromIID

user32

SetFocus
IsWindowVisible
GetKeyboardType
GetDesktopWindow
InsertMenuA
SetWindowPlacement
CreateMenu
GetPropA
GetWindowRect
CharLowerBuffA
GetClientRect
SendMessageW
SetTimer
ShowScrollBar
RedrawWindow
CallNextHookEx
LoadIconA
CallWindowProcA
SystemParametersInfoA
DestroyIcon
IsChild
EnableMenuItem
EnableWindow

kernel32

GetProcAddress
LocalAlloc
FormatMessageA
MulDiv
GetCommandLineA
GlobalAlloc
GetStartupInfoA
GetModuleHandleA
GetFullPathNameA
VirtualAllocEx
ExitProcess
VirtualQuery
VirtualAlloc
WaitForSingleObject
GetLocalTime
GetACP
LoadLibraryExA

Sections

CODE
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy