31f0da1861eb93d5658aabd1128f2c1f252dba0da5ac9dd00cfff3ee66798ec7 | Triage

Submit
Reports

Overview

overview

8

Static

static

31f0da1861...c7.exe

windows7-x64

8

31f0da1861...c7.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

31f0da1861eb93d5658aabd1128f2c1f252dba0da5ac9dd00cfff3ee66798ec7.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

31f0da1861eb93d5658aabd1128f2c1f252dba0da5ac9dd00cfff3ee66798ec7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

31f0da1861eb93d5658aabd1128f2c1f252dba0da5ac9dd00cfff3ee66798ec7
Size

838KB
MD5

1fad82894f86f1283d630062f68922d2
SHA1

122b8ba296eafe4bc011627d0f2cdbebfd607af7
SHA256

31f0da1861eb93d5658aabd1128f2c1f252dba0da5ac9dd00cfff3ee66798ec7
SHA512

44883647db7e7b65b2dcea88e36031856b3c3cd1dd31c12515034d6ad841ddb3e45ebcaf974a07898fd1e0cb1288517d160f06cbbef6b2801e00181f982bbaa8
SSDEEP

24576:FKy6EgOH+quKy4aSDV2b2VysVhLYcC3hCtPW:Hg3yDV2bQysVhccCRCpW

Score

N/A

Malware Config

Signatures

Files

31f0da1861eb93d5658aabd1128f2c1f252dba0da5ac9dd00cfff3ee66798ec7
.exe windows x86

b3849b9b4e943e84e9455c9fcfbdf9c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
CreateThread
LocalFree
GetModuleHandleA
GetCurrentDirectoryA
GetSystemTime
lstrlenA
SetEvent
LocalUnlock
Sleep
LoadLibraryW
UnmapViewOfFile
CreateFileA
HeapCreate
GetComputerNameA
CreateThread
CloseHandle
GetTickCount
PulseEvent
GetCommandLineW

user32

CreateWindowExA
GetDC
FillRect
GetKeyState
GetDlgItem
CallWindowProcA
DispatchMessageA
IsWindow
SetFocus
GetScrollBarInfo
DrawEdge
CheckRadioButton
DrawMenuBar

clbcatq

UpdateFromAppChange
SetSetupSave
CheckMemoryGates
DowngradeAPL
SetupOpen

desk.cpl

InstallScreenSaver

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy