758aff77cf319e0bf165859b61d6e20def561ec3b1088af0dff38e3f49ea76f3 | Triage

Submit
Reports

Overview

overview

Static

static

758aff77cf...f3.exe

windows7-x64

758aff77cf...f3.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

758aff77cf319e0bf165859b61d6e20def561ec3b1088af0dff38e3f49ea76f3.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

758aff77cf319e0bf165859b61d6e20def561ec3b1088af0dff38e3f49ea76f3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

758aff77cf319e0bf165859b61d6e20def561ec3b1088af0dff38e3f49ea76f3
Size

392KB
MD5

6f3a41a71bf8b04d24825eda3a4f631f
SHA1

9d8be60524484dc2b7b2ef920ff4c4d4caff288a
SHA256

758aff77cf319e0bf165859b61d6e20def561ec3b1088af0dff38e3f49ea76f3
SHA512

76b288c1dd0030656f5053d23f2ac9ac8cfcf3398bde5ee5b674002f20189c49130d8338a59d1fb80a5b4950aeb44ad17de3068ac70b8b1750eaa8a0ad546dd8
SSDEEP

12288:TtTzgk7tkwaNf7mW4FquDqkSwqHYdop4kB5oXRE6:xzgkFaYyW9Sw7dopngBE

Score

N/A

Malware Config

Signatures

Files

758aff77cf319e0bf165859b61d6e20def561ec3b1088af0dff38e3f49ea76f3
.exe windows x86

e2aa9d4da3def1f7ed39d789d92e9a62

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleA
WriteConsoleA
WriteConsoleA
GetCommandLineA
GetDriveTypeW
lstrlenW
DeleteAtom
GetFileAttributesA
GetStartupInfoA
Sleep
HeapSize
GetPrivateProfileSectionW
CopyFileA
SetEvent
AddAtomA
FindVolumeClose
LoadLibraryW
HeapDestroy
lstrcpyA
VirtualProtect
GetLogicalDrives

dsprop

FindSheet
FindSheet
CheckADsError
MsgBox
MsgBox
MsgBox
CheckADsError
ErrMsg
ErrMsg
ReportError
ReportError
ErrMsg
FindSheet

mmcndmgr

DllRegisterServer
CreateExecutivePlatform
DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 1024B - Virtual size: 774B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 496KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 385KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy