d1c20a16e2ae46b38b760cd571a1d66f4f6fbb04e71a7ed7bb4a8144260a1a75 | Triage

Submit
Reports

Overview

overview

Static

static

d1c20a16e2...75.exe

windows7-x64

d1c20a16e2...75.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d1c20a16e2ae46b38b760cd571a1d66f4f6fbb04e71a7ed7bb4a8144260a1a75.exe

Resource

win7-20220812-en

evasion persistence spyware stealer trojan

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

d1c20a16e2ae46b38b760cd571a1d66f4f6fbb04e71a7ed7bb4a8144260a1a75.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

d1c20a16e2ae46b38b760cd571a1d66f4f6fbb04e71a7ed7bb4a8144260a1a75
Size

725KB
MD5

0f9068c6224795cbf59dc300da574700
SHA1

5a618d4aae0d03824d7ae530943a77e09d2fe14f
SHA256

d1c20a16e2ae46b38b760cd571a1d66f4f6fbb04e71a7ed7bb4a8144260a1a75
SHA512

300b0eac218a722b25b2695451077b9d0b0da24ae04bbe288d53f64a7f446bcac8e17b93fd719778c7b961a3b7ae5e6794683d2b9e5f05d423c4939d718d1b02
SSDEEP

12288:DxELnFNAHqo5dmd+g+Zcwstd9raOgbe6Bu6A6UySGpKVcMlzfN35TFoEylt:Dx8WHAP+6wstd7C4GMlzfN3pmEylt

Score

N/A

Malware Config

Signatures

Files

d1c20a16e2ae46b38b760cd571a1d66f4f6fbb04e71a7ed7bb4a8144260a1a75
.exe windows x86

9d34512377d013bb2d12d8af2b6b38c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VarI1FromUI4
VarBoolFromDisp

advapi32

SystemFunction021

kernel32

DecodePointer

ntdll

ZwQueryInformationJobObject

ole32

HMETAFILE_UserUnmarshal

user32

GetClipboardViewer
GetShellWindow

Sections

.text
Size: 717KB - Virtual size: 720KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy