Mal-ecule
H(Cm)Md₂(Bi₂Si)
Well-known
baseline severity, 96% confident.
malware/trojan/elex
Elex Internet Explorer product resource
Objectives
baseline severity, 100% confident.
anti-static/obfuscation
WININET.DLL absent from PE import table
baseline severity, 75% confident.
anti-static/obfuscation/payload
Minimal PE imports with dynamic loading
baseline severity, 90% confident.
evasion/indicator-removal
Export timestamp is absent
component severity, 100% confident.
anti-static/obfuscation/reflection
LoadLibrary symbol
Micro-behaviors
notable severity, 70% confident.
communications/socket
WS2_32 Winsock DLL import
baseline severity, 100% confident.
os/module
Reference to ADVAPI32.dll
baseline severity, 90% confident.
os/registry
Close registry key
baseline severity, 90% confident.
process/terminate
Exit current process
Metadata
notable severity, 80% confident.
binary
Tiny PE single-function stub
notable severity, 70% confident.
binary/metrics
Single function with high complexity (monolithic stub)
notable severity, 100% confident.
signed
Binary is not digitally signed
baseline severity, 95% confident.
binary/section
UPX0 and UPX1 section pair
baseline severity, 95% confident.
dylib::advapi32
links ADVAPI32.dll (RegCloseKey)
baseline severity, 95% confident.
dylib::kernel32
links KERNEL32.DLL (LoadLibraryA, GetProcAddress, ExitProcess)
baseline severity, 95% confident.
dylib::mpr
links MPR.dll (WNetCloseEnum)
baseline severity, 95% confident.
dylib::msvcrt
links MSVCRT.dll (exit)
baseline severity, 95% confident.
dylib::shlwapi
links SHLWAPI.dll (SHSetValueA)
baseline severity, 95% confident.
dylib::ws2_32
links WS2_32.dll (ORDINAL 10)
baseline severity, 70% confident.
package
PE ProductName metadata field
20 of 34 traits shown
Identity
| SHA-256 | 6572329b6398da3c0a978019b2360ac6afaa869ca690bcd1de10f545e7cf7c1f |
|---|---|
| Canonical SHA-256 | 1c5e3ba213706b8369ca64993ac46740f5004c8572de2462608ecb0977c51614 |
| Filename | 1c5e3ba213706b8369ca64993ac46740f5004c8572de2462608ecb0977c51614.zip |
Origin
| Source | harvest |
|---|---|
| Feed | datasets |
| Ecosystem | APTMalware |
Timeline
| First seen | 1 May 2026 09:36 UTC |
|---|---|
| First analyzed | 12 May 2026 11:26 UTC |
| Last analyzed | 12 May 2026 11:26 UTC |
| Last updated | 2 Jun 2026 21:37 UTC |
Labeling
| Label | bad |
|---|---|
| Label source | harvest |
| Traits version | 4872c |
Not seeing what you expected? Let us know