61ff142092e2b8bb43384ff123ec6c77f969324a2f73fc20ccafbf019fc8c58d | Triage

Submit
Reports

Overview

overview

Static

static

61ff142092...8d.exe

windows7-x64

61ff142092...8d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

61ff142092e2b8bb43384ff123ec6c77f969324a2f73fc20ccafbf019fc8c58d.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

61ff142092e2b8bb43384ff123ec6c77f969324a2f73fc20ccafbf019fc8c58d.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

61ff142092e2b8bb43384ff123ec6c77f969324a2f73fc20ccafbf019fc8c58d
Size

197KB
MD5

925401df65dac6ef62be38717172387f
SHA1

668a9e73779845266e0b329230e062853a2530da
SHA256

61ff142092e2b8bb43384ff123ec6c77f969324a2f73fc20ccafbf019fc8c58d
SHA512

f86b20a8ddfed5a092d41fa986bbcbe79eb688d48c699a2a616b005c72c8f23ac55b48a760ca525f94e1edb6d342474c62109300b4a187295c5b7b5466eb69fb
SSDEEP

3072:ou2YwQ0SJN2l5g8WilAY0nLEO7osq4AD4VntYmJMGSGUbeYV7cc1ysKHNbfXnLcl:X2n5l5g8oJxAEPPpUbe5cK17D+rFqF4

Score

N/A

Malware Config

Signatures

Files

61ff142092e2b8bb43384ff123ec6c77f969324a2f73fc20ccafbf019fc8c58d
.exe windows x86

eb007d540d566b64320ae6c5723a5348

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextExtentExPointW
SetLayout
GetTextColor
Polyline
SetDIBits
GetClipBox
SetPixel

kernel32

GetFileType
HeapCreate
WaitForMultipleObjectsEx
UnlockFile
Sleep
TlsFree
FormatMessageA
CompareFileTime

user32

GetActiveWindow
GetNextDlgTabItem
IsWindowUnicode
FillRect
LoadBitmapA
CharNextA
DestroyWindow
HiliteMenuItem
GetWindowLongW
CreateWindowExA
LoadMenuA
GetMenuState
GetSysColor
CharLowerW
SetDlgItemInt
SystemParametersInfoW
EnumThreadWindows

shlwapi

PathIsDirectoryA

Exports

Exports

PutWindowInfo@12
OnSystemExA@12
DeviceExA@12
DataW@4
IsNotSizeEx@16

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy