54d79952fec39a3603a3959ec9e8fd498344824ae6c705d66c1a0de89624732c | Triage

Submit
Reports

Overview

overview

Static

static

54d79952fe...2c.exe

windows7-x64

54d79952fe...2c.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

54d79952fec39a3603a3959ec9e8fd498344824ae6c705d66c1a0de89624732c.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

54d79952fec39a3603a3959ec9e8fd498344824ae6c705d66c1a0de89624732c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

54d79952fec39a3603a3959ec9e8fd498344824ae6c705d66c1a0de89624732c
Size

448KB
MD5

5147b3804722de59ccd6ee78d60514e6
SHA1

ba01368eb3f05bce8ba910f5d46a1c80cb0e8132
SHA256

54d79952fec39a3603a3959ec9e8fd498344824ae6c705d66c1a0de89624732c
SHA512

3b35c20095c8f0931f107ea702e52bd7c8a4f301bc81e940c281cd9d796b72b529ae817fc252218aebf88e9046af000f0ccaa8def887fc60e76f91e5c48d2860
SSDEEP

12288:IDOafMND6PPOcGV75kE5qvqbX+xZqzFM:EOafMKi59qvGcqC

Score

N/A

Malware Config

Signatures

Files

54d79952fec39a3603a3959ec9e8fd498344824ae6c705d66c1a0de89624732c
.exe windows x86

3bec6b54a754ba7c0d7e532c8785c072

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
ResetEvent
VirtualAllocEx
ReleaseMutex
CreateFileA
GetFileAttributesA
GetStartupInfoA
HeapSize
GetModuleHandleA
RemoveDirectoryA
GetTickCount
DeleteFileW
SetEvent
SetLastError
GetCommandLineW
OpenProcess
GetEnvironmentVariableW
WriteConsoleA
CreateMutexA
ClearCommBreak
SetConsoleCP

user32

GetSysColor
GetKeyState
GetClassInfoA
PeekMessageA
GetCaretPos
GetDC
FindWindowA
DispatchMessageW
GetDC
GetWindowLongA
DispatchMessageW
CallWindowProcW
GetCursorInfo

linkinfo

CreateLinkInfoA
CreateLinkInfoA
CreateLinkInfoA
CreateLinkInfoA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 608KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 442KB - Virtual size: 441KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy