3d38951420b4bb804ca79737ef0b48aea84f9b668617f280c407859a507a9e9e | Triage

Submit
Reports

Overview

overview

8

Static

static

3d38951420...9e.exe

windows7-x64

8

3d38951420...9e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3d38951420b4bb804ca79737ef0b48aea84f9b668617f280c407859a507a9e9e.exe

Resource

win7-20220812-en

evasion persistence upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

3d38951420b4bb804ca79737ef0b48aea84f9b668617f280c407859a507a9e9e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

3d38951420b4bb804ca79737ef0b48aea84f9b668617f280c407859a507a9e9e
Size

230KB
MD5

2d2373c59d86c3d1c7a672f37487451e
SHA1

315b44906ffde406b1b5b66fa00097f1d7ab4eb2
SHA256

3d38951420b4bb804ca79737ef0b48aea84f9b668617f280c407859a507a9e9e
SHA512

5754d1f7b21a6b0048b35332bd7181b9b6800b915f17e59bb51e5f18eb78f486070df7b82a2f0cb5f0b92fbacb905789bbd0b81fb8c5cba2069e7521b3d04e1e
SSDEEP

6144:CrlyE1sbPII6YgyqQbvG086WLN2tnjxH6yTwG:m2II6py3lnjxH6cw

Score

N/A

Malware Config

Signatures

Files

3d38951420b4bb804ca79737ef0b48aea84f9b668617f280c407859a507a9e9e
.exe windows x86

f4dd7e518c1817d5831adc02564add19

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePatternBrush

kernel32

lstrcpyW

user32

IsCharAlphaNumericW

Exports

Exports

RoamingTraiO
?JoinLower@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@O

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.main
Size: 512B - Virtual size: 181B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy