2a8d20f33156868d48894e17f2ec366730701fe3f1720490d8138d05012a06f5 | Triage

Submit
Reports

Overview

overview

Static

static

2a8d20f331...f5.exe

windows7-x64

2a8d20f331...f5.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2a8d20f33156868d48894e17f2ec366730701fe3f1720490d8138d05012a06f5.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

2a8d20f33156868d48894e17f2ec366730701fe3f1720490d8138d05012a06f5.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

2a8d20f33156868d48894e17f2ec366730701fe3f1720490d8138d05012a06f5
Size

367KB
MD5

ef739df8d6b1e0130f0554c6b68b7197
SHA1

7d3326e83c1194373c62da2d1aa7d527d4e1d6f5
SHA256

2a8d20f33156868d48894e17f2ec366730701fe3f1720490d8138d05012a06f5
SHA512

9ceab3abfcd7ee04704ffb4ab64ea2e7021890758a5b349b2de6a12ad7013653d8d6818d9df4ed50622069dc186c156a0e52bae6ed33d405f4bf8e119fea9412
SSDEEP

6144:3gEJ04HduNvC0agNm9lIPJ2WNDT3oCpLGAcl+DegosQSm/SjJwbK+TfgPIns:U4HduNvCZ9lIPcW93oyGd6e3sg8JT+bW

Score

N/A

Malware Config

Signatures

Files

2a8d20f33156868d48894e17f2ec366730701fe3f1720490d8138d05012a06f5
.exe windows x86

7cd7d47b80ee5a5532a8cb9afdf5cfcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
CloseHandle
TlsGetValue
LoadLibraryExW
GetPriorityClass
ReleaseMutex
GlobalUnlock
GetCurrentThreadId
LocalFree
GetModuleHandleA
SetLastError
CreateFileA
GetStdHandle
CreateMutexA
TerminateThread
lstrlenW
FindResourceA
SetEnvironmentVariableA
DeleteAtom
HeapCreate

user32

SetFocus
FillRect
DrawMenuBar
CopyRect
CallWindowProcA
GetCaretPos
GetIconInfo
GetDC
GetDlgItem
DispatchMessageA
IsWindow
CheckRadioButton
DrawEdge

ntshrui

GetNetResourceFromLocalPathA
SetFolderPermissionsForSharing
GetLocalPathFromNetResourceA
IsPathSharedW
IsPathSharedA

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 343KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy