e680554fa3ec812160ea4fe8bbcafeac[.]exe

Resubmissions

03-01-2023 10:26

230103-mgxqdaed3v 10

30-12-2022 15:20

221230-sqr45sba9y 10

Sharing

Copy URL

Twitter E-mail

General

Target

e680554fa3ec812160ea4fe8bbcafeac.exe
Size

5.2MB
MD5

e680554fa3ec812160ea4fe8bbcafeac
SHA1

d5b2d9f227a419d60af8c93fd890e1858682055f
SHA256

b79b20c44857f5d00ebc2e4be8226a7f23460a25eaad85023127af6a09c48980
SHA512

680559a7d3eab6a45a76d87e3ed393b7247b43a2556786c4bd180b61104cf337da58d8206f0111a916e0df12554eaada5aa99a3b9abc6a59574591785f59a340
SSDEEP

98304:TdVwc5vJ8o/UUhsAn32ennaMjUckirsnS/PpJhanPiO+XtkF9xBf7m1709ooMDP:xVVvJxFjnmeaMjUckiYcBCnPiOemF9xG

Score

N/A

Malware Config

Signatures

Files

e680554fa3ec812160ea4fe8bbcafeac.exe
.exe windows x86

c7d0299a02435176f8902763fff19e41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetVersionExA
GetModuleHandleA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

MessageBoxA

advapi32

RegCloseKey

oleaut32

SysFreeString

ntdll

RtlDecompressBuffer

Sections

/Zo^
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

+UB5
Size: - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

=kul
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

L;O2
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

!<_u
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

+ihZ
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.l46
Size: - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

0bM!
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MoeT
Size: - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

kkMA
Size: - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

63fQ
Size: - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.???0
Size: - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.???1
Size: 5.2MB - Virtual size: 5.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

-bEF
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

c7d0299a02435176f8902763fff19e41

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

ntdll

Sections

/Zo^ Size: - Virtual size: 24KB

+UB5 Size: - Virtual size: 972B

=kul Size: - Virtual size: 1KB

L;O2 Size: - Virtual size: 1KB

!<_u Size: - Virtual size: 8B

+ihZ Size: - Virtual size: 24B

.l46 Size: - Virtual size: 2.4MB

0bM! Size: 1KB - Virtual size: 1KB

MoeT Size: - Virtual size: 4.3MB

kkMA Size: - Virtual size: 94KB

63fQ Size: - Virtual size: 4.7MB

.???0 Size: - Virtual size: 55KB

.???1 Size: 5.2MB - Virtual size: 5.2MB

-bEF Size: 1KB - Virtual size: 1KB

.rsrc Size: 14KB - Virtual size: 13KB

/Zo^
Size: - Virtual size: 24KB

+UB5
Size: - Virtual size: 972B

=kul
Size: - Virtual size: 1KB

L;O2
Size: - Virtual size: 1KB

!<_u
Size: - Virtual size: 8B

+ihZ
Size: - Virtual size: 24B

.l46
Size: - Virtual size: 2.4MB

0bM!
Size: 1KB - Virtual size: 1KB

MoeT
Size: - Virtual size: 4.3MB

kkMA
Size: - Virtual size: 94KB

63fQ
Size: - Virtual size: 4.7MB

.???0
Size: - Virtual size: 55KB

.???1
Size: 5.2MB - Virtual size: 5.2MB

-bEF
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 14KB - Virtual size: 13KB