d3ba1431ffe0454406446d03cec6fcefc749fec7bf2245d1bdfee6e644856945 | Triage

Submit
Reports

Overview

overview

8

Static

static

d3ba1431ff...45.exe

windows7-x64

8

d3ba1431ff...45.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d3ba1431ffe0454406446d03cec6fcefc749fec7bf2245d1bdfee6e644856945.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

d3ba1431ffe0454406446d03cec6fcefc749fec7bf2245d1bdfee6e644856945.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

9 signatures

150 seconds

General

Target

d3ba1431ffe0454406446d03cec6fcefc749fec7bf2245d1bdfee6e644856945
Size

34KB
MD5

4ca07f67bc5cda1d70b38bfe1570e5f1
SHA1

1251caa3212f20fa671f54549ffdf54780844233
SHA256

d3ba1431ffe0454406446d03cec6fcefc749fec7bf2245d1bdfee6e644856945
SHA512

9da65861aecd4821c0f00024c82529b290b4aae8e1a150a7b1fe38f60ca645e5c79d4e26eb3ab58714a650f6265749c6cf91ab2f4ceb77b2e42073cb2331a249
SSDEEP

768:E3xuVpZYme8t0k0TSk5vCwxKtHrR5WcmkeL:E3x8ZYme8tqpCwxcXWcm

Score

N/A

Malware Config

Signatures

Files

d3ba1431ffe0454406446d03cec6fcefc749fec7bf2245d1bdfee6e644856945
.exe windows x86

f59f4fd8aeaab15c68b2cde197f266c5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
FindResourceA
GetStartupInfoA
EnumResourceTypesA
ExitProcess
SetConsoleCP
VirtualAlloc
VirtualQueryEx
EnumResourceNamesA
GetModuleHandleA

ole32

PropVariantChangeType
BindMoniker
CoRegisterMallocSpy
CLIPFORMAT_UserFree

ws2_32

socket
WSALookupServiceNextA
setsockopt
bind
listen
WSACleanup
WSAStartup

user32

SendMessageA
EndDialog
MessageBoxA
DialogBoxParamA
SendDlgItemMessageA
SetParent

Sections

CODE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: - Virtual size: 150B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 48KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 857B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy