9a13e9ee0ceafde17dd96e02fc597e5661c7ee9cf6b044bc5fa6c78545a7e1c1 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

dridex

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9a13e9ee0ceafde17dd96e02fc597e5661c7ee9cf6b044bc5fa6c78545a7e1c1.exe

Resource

win10-20220812-en

windows10-1703-x64

5 signatures

150 seconds

General

Target

9a13e9ee0ceafde17dd96e02fc597e5661c7ee9cf6b044bc5fa6c78545a7e1c1
Size

10.7MB
MD5

11458a20b00a681e6a2f7f1133ef0d2c
SHA1

539497ebf8ae0b9b4cb2bcb96ec9463336ba5346
SHA256

9a13e9ee0ceafde17dd96e02fc597e5661c7ee9cf6b044bc5fa6c78545a7e1c1
SHA512

7536467eafc808789c68d123280fe3b4014c278dd8739609bee02d6d89a157bb25a8062a49f732eaa805f6c951de3bfe5f2c4df5d6d0fd63f782fbcc4e0e8245
SSDEEP

196608:jKAQZMRcwhQW5EC1Rv57Nl6QTptFRU1ZHbimRS9QHUFD:jKcR/P531p8eptFRkZWZ

Score

1^/10

Malware Config

Signatures

Files

9a13e9ee0ceafde17dd96e02fc597e5661c7ee9cf6b044bc5fa6c78545a7e1c1
.exe windows x64

4669d3101b93c0434b0a4ff67f74e387

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetLastError
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

EmptyClipboard
CharUpperBuffW

advapi32

RegSetValueExA

Sections

.text
Size: - Virtual size: 401KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

$YWGTRSD
Size: - Virtual size: 5.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

$YWGTRSD
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

$YWGTRSD
Size: 10.7MB - Virtual size: 10.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy