d3ef4359bcff9ab8fd16f40f0f863bf8cd27582b6ab0ef09f1b3d059c2946fff | Triage

Submit
Reports

Overview

overview

8

Static

static

d3ef4359bc...ff.exe

windows7-x64

8

d3ef4359bc...ff.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d3ef4359bcff9ab8fd16f40f0f863bf8cd27582b6ab0ef09f1b3d059c2946fff.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d3ef4359bcff9ab8fd16f40f0f863bf8cd27582b6ab0ef09f1b3d059c2946fff.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d3ef4359bcff9ab8fd16f40f0f863bf8cd27582b6ab0ef09f1b3d059c2946fff
Size

822KB
MD5

aeda7e8748787889569444728f2e2069
SHA1

6404575993c9de8eab0f6418fec9af05ed68a8e8
SHA256

d3ef4359bcff9ab8fd16f40f0f863bf8cd27582b6ab0ef09f1b3d059c2946fff
SHA512

a7c3ad5dd0a130b3f2cfc789f655face0018f0e5850d92359610b97ac628081dfbd6cee562486b3615c991b12992acb0cc045dfe764fd54c9df37f0c66d7f103
SSDEEP

12288:7KtzVeVyIJ08L1P1VaShATqEWTEiam11mLFz5W7/n9EQZBxu1KJTAMVNKIuP2Qzn:cuA0P1ogdaseFzERzHu1yA+KIK

Score

N/A

Malware Config

Signatures

Files

d3ef4359bcff9ab8fd16f40f0f863bf8cd27582b6ab0ef09f1b3d059c2946fff
.exe windows x86

9f22cf7f2c355e59ce4686c4519da522

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileIntW
WriteFile
GetSystemTime
lstrcpynA
lstrcpynA
GetLastError
GetModuleHandleA
CreatePipe
GetEnvironmentVariableW
GetCurrentDirectoryA
lstrcpynA
lstrcpynA
CreateMailslotA
GetVolumeInformationA
lstrcatA
CompareStringA
GetDiskFreeSpaceW
GetFileType
lstrcpynA
lstrcpynA
lstrcpynA
GetTimeFormatA
lstrcpynA
lstrcpynA
lstrcpynA
ReadConsoleW
VirtualFree
VirtualProtectEx
lstrcmpW

d3d9

Direct3DCreate9
DebugSetLevel
PSGPError
PSGPSampleTexture

Sections

.text
Size: 20KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 798KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy