auto-start[.]exe | Triage

Submit
Reports

Overview

overview

3

Static

static

1

Device/Har...ea.exe

windows7-x64

3

Device/Har...ea.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Device/HarddiskVolume3/Users/GemaPerezLGC/AppData/Roaming/0install.net/desktop-integration/stubs/1ea.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Device/HarddiskVolume3/Users/GemaPerezLGC/AppData/Roaming/0install.net/desktop-integration/stubs/1ea.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

auto-start.exe
Size

17KB
MD5

074322daef348e0dc910f0a76cd3e8b9
SHA1

97faf30269aeb696eba1ec5a5f96e95220245310
SHA256

4c3643fcbf1945ce1544ed045f4979664b26869dd1aa5b9ce2965895d0b164d8
SHA512

c96dab5e8c3ee25723a5059382ae5112d82882fc4bd149eae013ae6ce10bed07643d45a37200c89899068e43c9764a89605511b5c56bfbd8e5196d8ecdf69303
SSDEEP

384:NNh+za5A+pTvScEDP1O2EQI3lmSAKiLtDmIJNb8y2JD0oC1A3A0W6EKALfIo7zgC:NXkV+pTvY71O2EQI3tiDmIJuVfVA0fSD

Score

1^/10

Malware Config

Signatures

Files

auto-start.exe
.zip

Password: Passw0rd123$
Device/HarddiskVolume3/Users/GemaPerezLGC/AppData/Roaming/0install.net/desktop-integration/stubs/1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d/auto-start.exe
.exe windows x86

Password: Passw0rd123$

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manifest.json

© 2018-2025

Terms | Privacy