b36ccb7f541db8eeba64315c0f396a0ab6b5dfb69bb204418b4fb4679ce9e34e | Triage

Submit
Reports

Overview

overview

Static

static

b36ccb7f54...4e.exe

windows7-x64

b36ccb7f54...4e.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b36ccb7f541db8eeba64315c0f396a0ab6b5dfb69bb204418b4fb4679ce9e34e.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

b36ccb7f541db8eeba64315c0f396a0ab6b5dfb69bb204418b4fb4679ce9e34e.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

b36ccb7f541db8eeba64315c0f396a0ab6b5dfb69bb204418b4fb4679ce9e34e
Size

167KB
MD5

e2a76045af016b0e1bb1a76b2d0f2365
SHA1

2601e6cb3bdd24bb9963237e961fb28fa0f32ed6
SHA256

b36ccb7f541db8eeba64315c0f396a0ab6b5dfb69bb204418b4fb4679ce9e34e
SHA512

630e58eca0cefca98e4cf468823e3875d19381c416d4c8ef3e73546b58bb077233d88a6d9e28d95fb736bffbbc672e2d4b3b2e0cd082837ab650abe5a01f4ec6
SSDEEP

3072:vWSCPLt5LIBQr0h89rrORM0n9s1Ra6usnHts44Cqezvtykql3fM:vGPHLIBk0CHOC0n9y5RvtAf

Score

N/A

Malware Config

Signatures

Files

b36ccb7f541db8eeba64315c0f396a0ab6b5dfb69bb204418b4fb4679ce9e34e
.exe windows x86

106806eb1b86fb72de952f300632e52d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RemoveFontResourceW
ScaleViewportExtEx

kernel32

GetShortPathNameW
FlushViewOfFile
SizeofResource
FindResourceA
GetStdHandle
HeapFree

rpcrt4

NdrFreeBuffer
NdrFullPointerFree
NdrFixedArrayFree
NdrFixedArrayBufferSize

user32

SendInput
GetDialogBaseUnits
GetKeyboardLayout
GetForegroundWindow

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Agio
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mon887
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oypac
Size: 512B - Virtual size: 478B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Coni
Size: 38KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy