d231075fd39981c9661bb0c265cd700479bb4515ea425779f715424826e37282 | Triage

Submit
Reports

Overview

overview

1

Static

static

d231075fd3...82.exe

windows7-x64

1

d231075fd3...82.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d231075fd39981c9661bb0c265cd700479bb4515ea425779f715424826e37282.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d231075fd39981c9661bb0c265cd700479bb4515ea425779f715424826e37282.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d231075fd39981c9661bb0c265cd700479bb4515ea425779f715424826e37282
Size

283KB
MD5

9ff7314f9692cce11ed2584ea260de95
SHA1

1c49ba39a1c0a9f444d7b979dff9cdd6a36ae80e
SHA256

d231075fd39981c9661bb0c265cd700479bb4515ea425779f715424826e37282
SHA512

5760f528a178daa0c5e06940704a77a0fef8ab634caa7f68fe16efdc5a21b799182bf4f4b589b64537023fde1348e7299fe8b37df43923bcb08d527aa200a862
SSDEEP

6144:Qq6RZQnPWWRiVdNIaFX20IRvqz1r3L9fmb:Qq6RZQn5qNIaFvVQ

Score

N/A

Malware Config

Signatures

Files

d231075fd39981c9661bb0c265cd700479bb4515ea425779f715424826e37282
.exe windows x86

161443fd6b9331fa060ef801b77d70c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsFree
CreateMutexA
CreatePipe
GetThreadPriority
TlsGetValue
GetModuleHandleA
GetThreadLocale
AddAtomA
CancelWaitableTimer
GetOEMCP
IsDBCSLeadByte
GetConsoleCP
GetShortPathNameA
VirtualAlloc
SetEvent
GetThreadTimes
GetExitCodeThread
CompareStringA
GetLargestConsoleWindowSize
ReleaseMutex
GetUserDefaultLangID

user32

IsIconic
IsWindowVisible
GetActiveWindow
ValidateRect
GetSystemMetrics
ReleaseDC
CloseWindow
GetWindowTextLengthA
GetClassInfoExA
GetClassNameA
GetWindow
InvalidateRect
GetFocus
ShowWindow
RegisterClassA
ReleaseDC
GetForegroundWindow
GetDC
GetWindowTextA

msutb

GetPopupTipbar
DllCanUnloadNow
ClosePopupTipbar
DllGetClassObject
GetLibTls

shimeng

SE_DynamicShim

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 876KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy