a407de488d089f25f3cf83a5fac5722941e073fd2c1b07b4337bf42cf67948aa | Triage

Submit
Reports

Overview

overview

1

Static

static

a407de488d...aa.exe

windows7-x64

1

a407de488d...aa.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a407de488d089f25f3cf83a5fac5722941e073fd2c1b07b4337bf42cf67948aa.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

a407de488d089f25f3cf83a5fac5722941e073fd2c1b07b4337bf42cf67948aa.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a407de488d089f25f3cf83a5fac5722941e073fd2c1b07b4337bf42cf67948aa
Size

179KB
MD5

50166dcb115ed75555719cb68f70337a
SHA1

1a3d9c42302608f4d1c1698791e62a534188344d
SHA256

a407de488d089f25f3cf83a5fac5722941e073fd2c1b07b4337bf42cf67948aa
SHA512

7c3d8791826d61cfff7f814c01d5d186140c0f9334425afd0e9b14ceebc86cf89245fde30da2917076db0ddd677749aad43ce547bd1ee2b42e6f2c78168b7f9b
SSDEEP

3072:u76fnbldomvRydAnEUq0Ekq8ibm24eMAoH9RLH5YyY0LWIHFOwWDYr/:aChdj6Anlq0EzsI855YIlgDg

Score

N/A

Malware Config

Signatures

Files

a407de488d089f25f3cf83a5fac5722941e073fd2c1b07b4337bf42cf67948aa
.exe windows x86

ca149e64fd3e0f4146aadcf98a1c353f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetActiveWindow

kernel32

GetTickCount

Exports

Exports

��rainAgency@@00GPAUHINSTANCE__@@U_COMMPROP@@;F
?TrainEraser@@00GPAUHINSTANCE__@@U_COMMPROP@@;F
?TrainForward@@00GPAUHINSTANCE__@@U_COMMPROP@@;F
?TrainMove@@00GPAUHINSTANCE__@@U_COMMPROP@@;F
?TrainSimulator@@00GPAUHINSTANCE__@@U_COMMPROP@@;F

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 512B - Virtual size: 377B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy