87ef31f9d241faefe2aa1ef73eb4156ae8d9b5e149ee426c87661e703b343ddf | Triage

Submit
Reports

Overview

overview

1

Static

static

87ef31f9d2...df.exe

windows7-x64

1

87ef31f9d2...df.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

87ef31f9d241faefe2aa1ef73eb4156ae8d9b5e149ee426c87661e703b343ddf.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

87ef31f9d241faefe2aa1ef73eb4156ae8d9b5e149ee426c87661e703b343ddf.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

87ef31f9d241faefe2aa1ef73eb4156ae8d9b5e149ee426c87661e703b343ddf
Size

277KB
MD5

680cad838b166fd5f2c3d1ef26d991c2
SHA1

1a032d9f3c5be23d342b9afde2e914f98522b910
SHA256

87ef31f9d241faefe2aa1ef73eb4156ae8d9b5e149ee426c87661e703b343ddf
SHA512

a5dea4bc66d3c4c0f90d464c8de120196ba129e5e6a270c9936f431cd4922c90f5061da85b86c40a710c47fc9d83cd1852f18b1930eacbfe1247a22aba775ef7
SSDEEP

6144:4CgaHnYL3/r7eBjrWgi96lEeoda4ZGFbh7RYj9HUEMG03+fOMQq1:YiWvrSjrm6hoda4Gbh7oOEMG0Ji1

Score

N/A

Malware Config

Signatures

Files

87ef31f9d241faefe2aa1ef73eb4156ae8d9b5e149ee426c87661e703b343ddf
.exe windows x86

ffa0e510dc4f3429982da59e295f5040

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

olecli32

LeQueryOpen
LeQueryBounds
LeGetUpdateOptions
LeRelease
LeSaveToStream
LeQueryOutOfDate
LeReconnect
LeObjectConvert
LeSetBounds
LeObjectLong
LeSetData

kernel32

GetLocalTime
CloseHandle
HeapFree
GetSystemTimeAsFileTime
GetCurrentProcess
FindResourceW
LoadLibraryW
GetProcessHeap
SetUnhandledExceptionFilter
HeapAlloc
lstrlenW
CreateFileA
SystemTimeToFileTime
lstrcmpA
GetTickCount
WideCharToMultiByte
GetCurrentProcessId
GetUserDefaultLCID
SetLastError
QueryPerformanceCounter
MultiByteToWideChar
lstrcpyW
GlobalAlloc
GlobalFindAtomA

psapi

EnumPageFilesA
GetProcessImageFileNameA
EnumProcessModules
EmptyWorkingSet
GetPerformanceInfo
EnumPageFilesW

Sections

.text
Size: 242KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy