142e81b1bd213da29c7994c3bad7937f11e4c31782d969b0c92f38b1e0aa2603 | Triage

Submit
Reports

Overview

overview

Static

static

142e81b1bd...03.exe

windows7-x64

142e81b1bd...03.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

142e81b1bd213da29c7994c3bad7937f11e4c31782d969b0c92f38b1e0aa2603.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

142e81b1bd213da29c7994c3bad7937f11e4c31782d969b0c92f38b1e0aa2603.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

142e81b1bd213da29c7994c3bad7937f11e4c31782d969b0c92f38b1e0aa2603
Size

199KB
MD5

945b5fb9112816f096910f28e0c5ec62
SHA1

dcb09783ad3b4166f75c50c02fa254da3ee66f34
SHA256

142e81b1bd213da29c7994c3bad7937f11e4c31782d969b0c92f38b1e0aa2603
SHA512

1ed1d1bff9c4753eb25bf79ac4e9075d390f906ece7ac16a608566a826032085d5cf2763191fa2cf19f7b752fd074ef1efb78b2c471d06d787641f8ec1199d94
SSDEEP

3072:7Nk+Hn2oM3TUULfoAGrLGBgNGGoJKG7ERRbuemXhJGTr5cxXgjQ:7nhM3BoHpoGoJKzRg1EcxQ0

Score

N/A

Malware Config

Signatures

Files

142e81b1bd213da29c7994c3bad7937f11e4c31782d969b0c92f38b1e0aa2603
.exe windows x86

89d58250fb4d12307ba3735b87ad6e44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW
CreateDirectoryA
GetCommandLineA
CloseHandle
ExitThread
FindVolumeClose
WaitForMultipleObjects
GetFileType
CreateSemaphoreA
HeapFree
GetFileTime
GetModuleFileNameA
GetDriveTypeA
GetModuleHandleA
WriteFile
HeapCreate
lstrlenA
VirtualQuery
IsBadReadPtr
FindVolumeClose
GetFileAttributesA
LocalSize
FindClose
CancelIo
GetProcessHeap

uxtheme

CloseThemeData
DrawThemeEdge
GetThemeTextMetrics
CloseThemeData
GetThemeColor
GetThemeEnumValue
GetThemeTextExtent
IsThemeActive
GetThemeBool
SetWindowTheme
OpenThemeData
GetWindowTheme
DrawThemeBackground

fmifs

Extend
Extend
Extend
Extend

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy