d81aa304f15a4fff5db626b8bdb227bcd38dd6561c806b38760333a124c1dd42 | Triage

Submit
Reports

Overview

overview

8

Static

static

d81aa304f1...42.exe

windows7-x64

8

d81aa304f1...42.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d81aa304f15a4fff5db626b8bdb227bcd38dd6561c806b38760333a124c1dd42.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

d81aa304f15a4fff5db626b8bdb227bcd38dd6561c806b38760333a124c1dd42.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

d81aa304f15a4fff5db626b8bdb227bcd38dd6561c806b38760333a124c1dd42
Size

767KB
MD5

08420fe8d9ecf7e2482dc4074b0351c2
SHA1

1b3276586dcfb9852be07f37cf53c4474a83b90f
SHA256

d81aa304f15a4fff5db626b8bdb227bcd38dd6561c806b38760333a124c1dd42
SHA512

3af8d0de3785b618aa4073d9395e90617b5f60794a0a4e8d86d6cf13ea83827b66bbf9bf1b2840da85cca2b312aeecb6a98421079db73333dbec92480df7c886
SSDEEP

12288:7YL+i65M3z9qg1kujI63sIHsjMdkNRhiDp+nd9ID5tAfUQcN9KZW3jUC:7YjRtVIz3Mqhqp+dQ4cKZWz

Score

N/A

Malware Config

Signatures

Files

d81aa304f15a4fff5db626b8bdb227bcd38dd6561c806b38760333a124c1dd42
.exe windows x86

a8f594b489fecc711120f78888d18977

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
SetLastError
HeapDestroy
RemoveDirectoryW
SetLastError
GetCommandLineW
VirtualProtectEx
CreateMutexA
CreateDirectoryW
RemoveDirectoryW
OpenEventW
CreateFileA
ExitProcess
ReleaseMutex
lstrlenA
DeleteFileA
GetVersion
GetFileSize
CreatePipe
CreateFileMappingW
LoadLibraryA
ReleaseSemaphore
MapViewOfFile
HeapSize
GetStartupInfoA

uxtheme

GetThemeSysSize
GetThemeTextMetrics
DrawThemeBackground
CloseThemeData
SetWindowTheme
GetThemeBool
DrawThemeEdge
CloseThemeData
GetThemeColor
GetThemeTextExtent
OpenThemeData
IsThemeActive
GetWindowTheme

hhsetup

??0CFIFOString@@QAE@XZ
??0CFIFOString@@QAE@XZ
??0CFIFOString@@QAE@XZ
??0CFIFOString@@QAE@XZ

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy