0dc4127cbb9fef211710d89952a9bdfeba320f04efad3d7cec3357848fa094af | Triage

Submit
Reports

Overview

overview

Static

static

0dc4127cbb...af.exe

windows7-x64

0dc4127cbb...af.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0dc4127cbb9fef211710d89952a9bdfeba320f04efad3d7cec3357848fa094af.exe

Resource

win7-20220812-en

sality backdoor evasion trojan upx

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

0dc4127cbb9fef211710d89952a9bdfeba320f04efad3d7cec3357848fa094af.exe

Resource

win10v2004-20220812-en

sality backdoor evasion trojan upx

windows10-2004-x64

17 signatures

150 seconds

General

Target

0dc4127cbb9fef211710d89952a9bdfeba320f04efad3d7cec3357848fa094af
Size

260KB
MD5

59de358b74a47f81b5acad08209366ff
SHA1

839690146daf09089444cb14325a16ea80303820
SHA256

0dc4127cbb9fef211710d89952a9bdfeba320f04efad3d7cec3357848fa094af
SHA512

609d96a4bc0805a3830879e2000c75e2e110669db1e92eaaa8eae902bcb9ea4ac4fd86648dba4a181bf994731edecaa69534df64ec77b6d7ece9f69a3b60634e
SSDEEP

3072:j8eJA+s4lrnZ0vpLJA/CDKoQ+FI+FNK9C3vB+cmcLGptmghXRUvzCqlxb9FoW/5b:j8CA+s4l+hLm/mKNNJ9g+zsGag3+2E/R

Score

N/A

Malware Config

Signatures

Files

0dc4127cbb9fef211710d89952a9bdfeba320f04efad3d7cec3357848fa094af
.exe windows x86

4629e330042b7937317ac885882b4bd2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetModuleHandleA
LoadLibraryA

user32

ChangeDisplaySettingsA
GetDC
BeginPaint
GetWindowRect
EnableWindow
IsWindowEnabled
GetWindowTextA

gdi32

CreateSolidBrush
CreatePolygonRgn
CreateCompatibleBitmap

oleaut32

SysAllocStringLen

msvcrt

__getmainargs
_controlfp
_except_handler3
__set_app_type
__p__fmode
strcmp
__p__commode
_XcptFilter
exit
_acmdln
_exit
_initterm
__setusermatherr
_adjust_fdiv

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 894B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy