2d431819926de331e0fce87860ad5278e08de21aadbb055b1a81044ce5a1acea | Triage

Submit
Reports

Overview

overview

Static

static

2d43181992...ea.exe

windows7-x64

2d43181992...ea.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2d431819926de331e0fce87860ad5278e08de21aadbb055b1a81044ce5a1acea.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

2d431819926de331e0fce87860ad5278e08de21aadbb055b1a81044ce5a1acea.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

2d431819926de331e0fce87860ad5278e08de21aadbb055b1a81044ce5a1acea
Size

198KB
MD5

316e5cc5e5d73244b7a0d92e0994d552
SHA1

a627f2c2387fc82fbe524f7d6b5a8abf22f09ac4
SHA256

2d431819926de331e0fce87860ad5278e08de21aadbb055b1a81044ce5a1acea
SHA512

9f1507dd72988d95874e3e7ebb8967213bd827017c09f174222625c8106001a2c17f0a4e39bc685caa87ad7769fd393f0fcbd409950538803306d97ef9db5958
SSDEEP

6144:OnTrHfU2yqT0nFC7wkZuUm0wgzaqQE0Fzz1Q:OnnHszqoFC7whrm+DE0w

Score

N/A

Malware Config

Signatures

Files

2d431819926de331e0fce87860ad5278e08de21aadbb055b1a81044ce5a1acea
.exe windows x86

db7a032994d9d5bf9c5253d0d067b085

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
CreateDirectoryA
GetCommandLineA
GetStdHandle
CancelIo
WaitForMultipleObjects
CreateSemaphoreA
GetDriveTypeA
HeapFree
HeapCreate
GetCurrentThreadId
CreatePipe
GetStdHandle
GlobalSize
GetFileType
CloseHandle
GetCurrentDirectoryW
Beep
IsBadWritePtr
FindClose
GetModuleHandleA
GetModuleFileNameA
ExitThread
GetFileAttributesW
WriteFile

uxtheme

GetThemeTextExtent
OpenThemeData
CloseThemeData
GetThemeSysSize
DrawThemeBackground
GetThemeTextMetrics
CloseThemeData
GetWindowTheme
GetThemeColor
SetWindowTheme
GetThemeBool
IsThemeActive
DrawThemeEdge

iaspolcy

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy