6403fd5e4f785f019e11876fc60f64aa1307353afb400ce2e936238a597653a8 | Triage

Submit
Reports

Overview

overview

Static

static

6403fd5e4f...a8.exe

windows7-x64

6403fd5e4f...a8.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6403fd5e4f785f019e11876fc60f64aa1307353afb400ce2e936238a597653a8.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

6403fd5e4f785f019e11876fc60f64aa1307353afb400ce2e936238a597653a8.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6403fd5e4f785f019e11876fc60f64aa1307353afb400ce2e936238a597653a8
Size

418KB
MD5

6bbf48a8ce45369b3bea5b23478d9877
SHA1

b8c2cd94df5f89079717e6e3d9a456b7590b0dfe
SHA256

6403fd5e4f785f019e11876fc60f64aa1307353afb400ce2e936238a597653a8
SHA512

19a50397d6a7629d446072482cc7637f12872e634fd9f00d8a15489bf3320ff683f506e621d9a3b5bf2207c3ff0e2e2a65f708a7a857f54487044ad4ac73021e
SSDEEP

6144:7jUnXf3oe1lP01u/0FxRMVkTWh5yGLwYu6/R+MexmitdHR/OKAWp2DeeHRabWjbG:Ev4e70oMeJ5yGLfo3H4RaQy

Score

N/A

Malware Config

Signatures

Files

6403fd5e4f785f019e11876fc60f64aa1307353afb400ce2e936238a597653a8
.exe windows x86

82f794ecb9a86e02a0cf39c93138ba0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW
GetModuleHandleA
CreateSemaphoreA
CreateMailslotA
FindClose
GetFullPathNameW
GetFullPathNameW
SetEnvironmentVariableA
SetVolumeLabelA
WriteConsoleA
Sleep
CreateFileA
GetStringTypeA
GetModuleHandleW
FindClose
FindClose
CopyFileA
GetVolumePathNameW
CreateFileMappingA
VirtualFree
HeapCreate
CreateEventA
CreatePipe

mshtml

PrintHTML
DllCanUnloadNow
DllGetClassObject
ShowModalDialog

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES
Size: 410KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy