1395c8a77543c4bb71b557c3eea6d7ca04eb8c73afd1dfd82bbae758301eee6e | Triage

Submit
Reports

Overview

overview

Static

static

1395c8a775...6e.exe

windows7-x64

1395c8a775...6e.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1395c8a77543c4bb71b557c3eea6d7ca04eb8c73afd1dfd82bbae758301eee6e.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

1395c8a77543c4bb71b557c3eea6d7ca04eb8c73afd1dfd82bbae758301eee6e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

1395c8a77543c4bb71b557c3eea6d7ca04eb8c73afd1dfd82bbae758301eee6e
Size

345KB
MD5

6a104c92dfe799201db092b843e457bb
SHA1

5936104c19ef4dca09cef8670b4ef6e97feb2ae5
SHA256

1395c8a77543c4bb71b557c3eea6d7ca04eb8c73afd1dfd82bbae758301eee6e
SHA512

16f2048668c8bf2b2ae884dbbd2da05ef4a10f169a32b4dca7195311e0f5a1a73f3d91cd88c1b4c017934914c0bb19656f5253269faf97ce8efae9285c377099
SSDEEP

6144:FXs3d9seDWldow0VSKDYSLFSGxcCbpPhiM1nvLjJoxGq6IEN+c:FXstDWldIfDYSLF+uPh71TFYGq6j

Score

N/A

Malware Config

Signatures

Files

1395c8a77543c4bb71b557c3eea6d7ca04eb8c73afd1dfd82bbae758301eee6e
.exe windows x86

4582ffdd7eb98cb63a937096204182b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
HeapFree
GetTickCount
GetModuleFileNameW
GetCurrentProcessId
OpenFileMappingW
GetLastError
MapViewOfFile
CloseHandle
CreateFileW
CreateFileMappingW
UnmapViewOfFile
GetFileInformationByHandle
VirtualAlloc
VirtualFree
GetModuleHandleA
GetProcAddress
LoadLibraryW

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xcpad
Size: - Virtual size: 312KB

.idata
Size: 1024B - Virtual size: 626B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy