811742d2f64b27f8e87cf8f4ae79d72d5a89f114ef433e626e3767141bb9c12a | Triage

Submit
Reports

Overview

overview

Static

static

811742d2f6...2a.exe

windows7-x64

811742d2f6...2a.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

811742d2f64b27f8e87cf8f4ae79d72d5a89f114ef433e626e3767141bb9c12a.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

811742d2f64b27f8e87cf8f4ae79d72d5a89f114ef433e626e3767141bb9c12a.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

811742d2f64b27f8e87cf8f4ae79d72d5a89f114ef433e626e3767141bb9c12a
Size

196KB
MD5

9b8be0d754b998d4e033a5f598859211
SHA1

488a7539bc72b9c25816c57f2a4a19e191ad5af8
SHA256

811742d2f64b27f8e87cf8f4ae79d72d5a89f114ef433e626e3767141bb9c12a
SHA512

757a2cca4723dd9d6eafc701022ae23cdfd12a864dbea5fa8e4c7934918c489979b4c2c59663402858fd0213267fecc8e93fba8a86b8e04df31c2884eb5b4844
SSDEEP

3072:5BfOdIN16jubYmioE/RANdhhudbeuzbnrwqaxaMKFQKs+xPCUZKkiYH+R:/R1a4hioE/RAjhhuZHDrw1wzs+xPT3vw

Score

N/A

Malware Config

Signatures

Files

811742d2f64b27f8e87cf8f4ae79d72d5a89f114ef433e626e3767141bb9c12a
.exe windows x86

703b79c6cb7b566b1ea5d06939bd229d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SwitchToThisWindow
ShowCaret
GetDlgCtrlID
MapDialogRect
EnumWindows
IsZoomed
SetWindowPos
GetMenuItemCount
InvalidateRect
MessageBoxA
GetShellWindow
EqualRect
GetKeyboardLayoutNameW
RemovePropW
GetMenuItemID
AdjustWindowRect

shlwapi

PathIsDirectoryEmptyA

kernel32

FindCloseChangeNotification
GetThreadContext
IsDBCSLeadByte
WaitForSingleObjectEx
AddAtomA
OpenSemaphoreW
EnumResourceLanguagesA
FindResourceExW

gdi32

GetTextCharsetInfo
ExtTextOutW
GetRgnBox
Ellipse
ExcludeClipRect
ScaleWindowExtEx
TextOutA

Exports

Exports

LoadMutantExW@8
ShowTimerNew@4
DeleteWidthExA@12
IncrementExpressionExA@16
FreePointer@12

Sections

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.cud
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy