ec62389ded761792251db4c570f6eee244d455a8 | Triage

Submit
Reports

Overview

overview

8

Static

static

ec62389ded...a8.exe

windows7-x64

8

ec62389ded...a8.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ec62389ded761792251db4c570f6eee244d455a8.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec62389ded761792251db4c570f6eee244d455a8.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ec62389ded761792251db4c570f6eee244d455a8
Size

159KB
MD5

5e7ac0eae9d3b069d90bd5ad849ba95e
SHA1

ec62389ded761792251db4c570f6eee244d455a8
SHA256

1065b07430c3cd64c927c8fefaa7b0cfd8892c85601b04b4052515021f3d5a8e
SHA512

8cecd1555e04fca0afcf1cb81f12cf43e34e04c9c5bd520a23b38069d64782b80451e82f553d1af04c1ea3982e04d2824263da145d1ce922a9f61698d424ce5b
SSDEEP

3072:IiwZSd/+kqiGmo41k7cKJG+RZYOf1g7d7ZHGuR67VvRJ4p7T:IiwZSd3qin1ScKbRZl1gJ7K1G

Score

N/A

Malware Config

Signatures

Files

ec62389ded761792251db4c570f6eee244d455a8
.exe windows x86

7d4279502648d7970890ef47cf00b487

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GlobalUnlock
CreateEventA
GetConsoleCP
GetStdHandle
LocalFree
MapViewOfFile
GetACP
GetDriveTypeA
lstrlenA
FindClose
GetCPInfo
GlobalLock
CloseHandle
GetModuleHandleA
HeapCreate
LoadLibraryExA
CreateFileA
IsBadReadPtr
FreeEnvironmentStringsA

user32

RedrawWindow
ClipCursor
EndDialog
DialogBoxParamA
CreateWindowExA
CheckMenuItem
GetParent
GetDlgItemTextA
GetMessageA
IsMenu
GetSubMenu
GetDlgItem
SetFocus
DrawIconEx

apphelp

SdbCloseDatabase
ApphelpShowDialog
SdbFindFirstTag
ApphelpCheckIME
ApphelpCheckRunApp

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy