1ef40dc8d0c774f553ddd5416086310c023c30635a0c0234c4db7b5750dc1b5d | Triage

Submit
Reports

Overview

overview

3

Static

static

1ef40dc8d0...5d.exe

windows7-x64

3

1ef40dc8d0...5d.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1ef40dc8d0c774f553ddd5416086310c023c30635a0c0234c4db7b5750dc1b5d.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

1ef40dc8d0c774f553ddd5416086310c023c30635a0c0234c4db7b5750dc1b5d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

1ef40dc8d0c774f553ddd5416086310c023c30635a0c0234c4db7b5750dc1b5d
Size

160KB
MD5

6bcd775f30c35e969768b44d0d14285e
SHA1

7df188859bdfb188fcd3c07b372956b4e50ff59d
SHA256

1ef40dc8d0c774f553ddd5416086310c023c30635a0c0234c4db7b5750dc1b5d
SHA512

2e2e003471e02beb1d1fd0b28874aeaff5140e6a2f6efa8c2cb34bd754654c098509b5d6efd29f4616a069154cf7f5096c9635cc47b50622aaeaa1204b74d2a5
SSDEEP

3072:XdOVrR4j1QieLbp9II0GV4mDXH4Re3fTV3kKD5pJpH5wWkE1CHW:tOVrRE1sbXII0s4mDXGe3fTJ5npHSWky

Score

N/A

Malware Config

Signatures

Files

1ef40dc8d0c774f553ddd5416086310c023c30635a0c0234c4db7b5750dc1b5d
.exe windows x86

6db6678296b0c498fcfe0ab4ecc9c00d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsCharAlphaNumericW

kernel32

lstrcpyW

gdi32

CreatePatternBrush

Exports

Exports

RoamingTraiO
?JoinLower@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@O

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.main
Size: 512B - Virtual size: 181B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

afmtbau
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy