1d4e43de44d92c5129651ed1c4f86c3771a9d1b13969143248103d48807db1d7 | Triage

Submit
Reports

Overview

overview

Static

static

1d4e43de44...d7.exe

windows7-x64

1d4e43de44...d7.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1d4e43de44d92c5129651ed1c4f86c3771a9d1b13969143248103d48807db1d7.exe

Resource

win7-20221111-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

1d4e43de44d92c5129651ed1c4f86c3771a9d1b13969143248103d48807db1d7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

11 signatures

150 seconds

General

Target

1d4e43de44d92c5129651ed1c4f86c3771a9d1b13969143248103d48807db1d7
Size

196KB
MD5

0dc3493c1e79b9f89306c1c80f401549
SHA1

e2aa9ebb86d63b60f122de3d12c92442d9b7a49b
SHA256

1d4e43de44d92c5129651ed1c4f86c3771a9d1b13969143248103d48807db1d7
SHA512

508a33223f8227bdd97eebabdb70c5bfdb8ebf7beb7c32acda6a0eb8e34607f154ff801ae409fd67359aa977fbabceececc524695015a8ac096239a22de446a8
SSDEEP

3072:T+vzt6LEpgGCCsCAv9H8eDa6F3ATm9fIUs9g+8okXxK7Mb+yiYunU7RonvxRKMWe:TZgCGC79H8eDBJsa+8okB1bHV48RHL0h

Score

N/A

Malware Config

Signatures

Files

1d4e43de44d92c5129651ed1c4f86c3771a9d1b13969143248103d48807db1d7
.exe windows x86

57f4bb022e1b17e64faaa2b05d4c7963

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryW

kernel32

GetSystemTimeAsFileTime
LocalFree
GetCPInfo
GlobalFlags
FindClose
GetModuleHandleW
GetComputerNameExW
SetSystemTimeAdjustment

comdlg32

PageSetupDlgW
GetOpenFileNameW

user32

InvalidateRgn
RedrawWindow
GetNextDlgTabItem
AdjustWindowRect
RegisterClassExA
GetCaretPos
InternalGetWindowText
SetRect
CreateCaret
GetForegroundWindow
CreateWindowExA
SetWindowLongW
DispatchMessageW
PtInRect
CopyImage
ReleaseDC

gdi32

ResizePalette
SetDIBitsToDevice
GetDeviceCaps
EnumFontsW
LineDDA
StartDocW
AddFontResourceW

comctl32

ImageList_Draw
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Remove

Exports

Exports

ModifyMutexOriginal@16
SendWindowOld@12
LoadVersionOriginal@8
List@8
EnumListItemOld@12

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy