12d6e161e57a7186a354e3f5d3f422a71a7a36f3b694adf873bab93d3503889b | Triage

Submit
Reports

Overview

overview

Static

static

12d6e161e5...9b.exe

windows7-x64

12d6e161e5...9b.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

12d6e161e57a7186a354e3f5d3f422a71a7a36f3b694adf873bab93d3503889b.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

12d6e161e57a7186a354e3f5d3f422a71a7a36f3b694adf873bab93d3503889b.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

12d6e161e57a7186a354e3f5d3f422a71a7a36f3b694adf873bab93d3503889b
Size

394KB
MD5

26c895965df3855bb1712c072756ec0e
SHA1

86b79db8e22c1ea4c67fd98f02e6ed31d7fbf5fc
SHA256

12d6e161e57a7186a354e3f5d3f422a71a7a36f3b694adf873bab93d3503889b
SHA512

54ae532872fd78cc5f9d83a476c3f61536c9fc326a57a255d75a8d6c13fd23694f00995b7fb2895a073c9e7635aabeb6fd1e22c8b2736a9010887bf9034b9e4a
SSDEEP

6144:X7sXKTzTZ475ar6/vIlOhZtAU5v2OEWxPIT:g6TRA/gyZj5v2OEWxPIT

Score

N/A

Malware Config

Signatures

Files

12d6e161e57a7186a354e3f5d3f422a71a7a36f3b694adf873bab93d3503889b
.exe windows x86

cbd05dc0f277089affe7281695d89848

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindVolumeClose
LocalFree
GetSystemTime
GetTickCount
lstrlenA
CreateFileA
SetLastError
GetModuleHandleA
UnmapViewOfFile
GetCommandLineW
GetDiskFreeSpaceA
CloseHandle
Sleep
LoadLibraryW
GetComputerNameA
GetTimeFormatW
LocalUnlock
ResetEvent
HeapCreate
CreateThread

user32

CreateWindowExA
FillRect
IsWindow
GetKeyState
CallWindowProcA
DrawEdge
GetComboBoxInfo
GetDC
SetFocus
CheckRadioButton
GetDlgItem
DrawMenuBar
DispatchMessageA

cryptui

CryptUIDlgSelectCA
CryptUIDlgCertMgr
CryptUIDlgSelectStoreA
LocalEnroll
WizardFree

hdwwiz.cpl

AddHardwareWizard

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 732KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy