eb4481f4048f2ee9b792c9e9b2b89c28feaa45756187b0a8820abb6e50aaf6cc | Triage

Submit
Reports

Overview

overview

Static

static

eb4481f404...cc.exe

windows7-x64

eb4481f404...cc.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

eb4481f4048f2ee9b792c9e9b2b89c28feaa45756187b0a8820abb6e50aaf6cc.exe

Resource

win7-20220812-en

sality backdoor evasion trojan upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb4481f4048f2ee9b792c9e9b2b89c28feaa45756187b0a8820abb6e50aaf6cc.exe

Resource

win10v2004-20220812-en

sality backdoor evasion trojan upx

windows10-2004-x64

8 signatures

150 seconds

General

Target

eb4481f4048f2ee9b792c9e9b2b89c28feaa45756187b0a8820abb6e50aaf6cc
Size

92KB
MD5

5b9afc7228337709dc444bc51ccd80f0
SHA1

12cce477be8a54f7241e8fd17cbc46cd96a238dd
SHA256

eb4481f4048f2ee9b792c9e9b2b89c28feaa45756187b0a8820abb6e50aaf6cc
SHA512

b1838bc6e9270c40474c1b7cec65cdff27d019f23e8e6ed042694fcf73796e65086936b10b863a3cb341c27c7da0fb85f414e1e49cc500e146fc5a8216efd267
SSDEEP

768:4jkpQ2/ReWl0KA4sKT2fRStjspBXt1RiJ8esDDz8i4xZnDEVZZ/dYazfbIgeU78j:4jkpQCgTHfRSB+XHDCxUTrT7cCv0h+DM

Score

N/A

Malware Config

Signatures

Files

eb4481f4048f2ee9b792c9e9b2b89c28feaa45756187b0a8820abb6e50aaf6cc
.exe windows x86

3a62fc32a875850a319577b5c82e79e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

CryptAcquireContextA
CryptCreateHash
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptReleaseContext
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

kernel32

AddAtomA
ExitProcess
FindAtomA
GetAtomNameA
GetLastError
SetUnhandledExceptionFilter

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_iob
_onexit
_setmode
abort
atexit
exit
fflush
fprintf
free
malloc
printf
signal

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 176B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy