a31ee9e973689593650811d3d7ae576f0191fb452a2c1aea02b0259f70f54345 | Triage

Submit
Reports

Overview

overview

Static

static

a31ee9e973...45.exe

windows7-x64

a31ee9e973...45.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a31ee9e973689593650811d3d7ae576f0191fb452a2c1aea02b0259f70f54345.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

a31ee9e973689593650811d3d7ae576f0191fb452a2c1aea02b0259f70f54345.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

a31ee9e973689593650811d3d7ae576f0191fb452a2c1aea02b0259f70f54345
Size

167KB
MD5

af4b0563b146fdcf8a45c435fdc72e6a
SHA1

6a49825318179b13b2b5a252bb313f6b79ba4418
SHA256

a31ee9e973689593650811d3d7ae576f0191fb452a2c1aea02b0259f70f54345
SHA512

b1748a1d042ae8e2f8ae68c8aa14edb84c8d9edd55b9d83aeac7757acc24e492a51cd0f0d8ac2ac4108317ee04f006fe875021b496d78f351f9a80f2adec21f8
SSDEEP

3072:xWSCrSFirigJ8i1CXt4ml3MxqDUncvoOHLSInykql3fMn:xGEirigJzY/lqqrHrBnAfy

Score

N/A

Malware Config

Signatures

Files

a31ee9e973689593650811d3d7ae576f0191fb452a2c1aea02b0259f70f54345
.exe windows x86

106806eb1b86fb72de952f300632e52d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RemoveFontResourceW
ScaleViewportExtEx

kernel32

GetShortPathNameW
FlushViewOfFile
SizeofResource
FindResourceA
GetStdHandle
HeapFree

rpcrt4

NdrFreeBuffer
NdrFullPointerFree
NdrFixedArrayFree
NdrFixedArrayBufferSize

user32

SendInput
GetDialogBaseUnits
GetKeyboardLayout
GetForegroundWindow

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Agio
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mon887
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oypac
Size: 512B - Virtual size: 478B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Coni
Size: 38KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy