Layout.exe

First submission 2024-07-09 21:23:02 Last sumbission 2024-07-09 21:40:02

File details

File type: PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
Mime type: application/x-dosexec
File size: 86.0 KB (88064 bytes)
Compile time: 2076-11-05 16:18:26
MD5: 75fc6ca8988d7540736cba2f0c052dad
SHA1: 50a88538d87f689b7d5844bbf65ba557990ca35b
SHA256: 3e3ff369c6f3b7c8b695397878089583295860a00ee71941034fd01bb340cc02
Sections 2 .text .rsrc
Directories 2 resource debug

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 46/78 VT report date: 2024-07-09 21:05:23
Malware Type 2 trojan pua
Threat Type 3 jalapeno purelogs msil

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXp://91.92.243.32/kvro/Layout.exe VirusTotal Report 91.92.243.32 VirusTotal Report 2024-07-09 21:40:03
hXXp://voucher-01-static.com/kvro/Layout.exe VirusTotal Report voucher-01-static.com VirusTotal Report 2024-07-09 21:23:02

PE Sections 0 suspicious

Name VAddress VSize Size SHA1 MD5 Suspicious
.text 0x2000 0x2939 10752 844eef7d7768a9db4eeaf170138d8be19d3fe56b 21132bcb0abb39deb69adf3b4448b021
.rsrc 0x6000 0x12b38 76800 fd01d6398a117f87fcc655e23db71c9c0a482c72 88c71893a67844a6caa3dfd2cd473628

PE Resources 4

Name Language Sublanguage Offset Size Data
RT_ICON LANG_NEUTRAL SUBLANG_NEUTRAL 0x18140 1128
RT_GROUP_ICON LANG_NEUTRAL SUBLANG_NEUTRAL 0x185b8 76
RT_VERSION LANG_NEUTRAL SUBLANG_NEUTRAL 0x18614 804
RT_MANIFEST LANG_NEUTRAL SUBLANG_NEUTRAL 0x18948 490

Meta infos 12

LegalCopyright: Copyright \xa9 2024
Assembly Version: 1.0.0.0
InternalName: Layout.exe
FileVersion: 1.0.0.0
CompanyName: Layout
LegalTrademarks:
Comments: Layout
ProductName: Layout
ProductVersion: 1.0.0.0
FileDescription: Layout
Translation: 0x0000 0x04b0
OriginalFilename: Layout.exe

Packers detected 2

Microsoft Visual C++ vx.x DLL
Microsoft Visual C++ v6.0

Strings analysis - File found

Text
http://voucher-01-static.com/rkei/223-8.txt

Strings analysis - Possible URLs found 1

http://voucher-01-static.com/rkei/223-8.txt