1f501a2e0c7ac677bc5539b6e4d616f0fc50d05f59393e9280675aae2c67325f | Triage

Submit
Reports

Overview

overview

Static

static

1f501a2e0c...5f.exe

windows7-x64

1f501a2e0c...5f.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1f501a2e0c7ac677bc5539b6e4d616f0fc50d05f59393e9280675aae2c67325f.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

1f501a2e0c7ac677bc5539b6e4d616f0fc50d05f59393e9280675aae2c67325f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

1f501a2e0c7ac677bc5539b6e4d616f0fc50d05f59393e9280675aae2c67325f
Size

394KB
MD5

4951ba2821762751f2a5203d93adb0c1
SHA1

195f83f0dda260a73b888e9c4121d0410e5a8de0
SHA256

1f501a2e0c7ac677bc5539b6e4d616f0fc50d05f59393e9280675aae2c67325f
SHA512

c4cf0c6bd194e5c3a0abcb0df5b416a8a339ceb37a891e52dd6598a2422024d92780f0ced1750a9271c36fa62f37cdf364d168954bf7c0623c7d61f0e2afe07b
SSDEEP

12288:cW91rCwMBT5xTH2CGg9qgTYjxv/OBj4zciqXhR:ixBXTHbGg9qgTmxe5vRR

Score

N/A

Malware Config

Signatures

Files

1f501a2e0c7ac677bc5539b6e4d616f0fc50d05f59393e9280675aae2c67325f
.exe windows x86

86b2ed035d7a1d48f72f6eed24a241ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReleaseMutex
WriteConsoleW
GetPriorityClass
HeapCreate
GetStartupInfoA
IsValidLocale
GetLastError
SetEvent
lstrlenW
GetModuleHandleA
WriteConsoleW
IsBadStringPtrA
WriteConsoleW
lstrcpyW
CopyFileW
GetCurrentDirectoryA
IsBadCodePtr
CloseHandle
GetFileAttributesA
DisconnectNamedPipe
CreatePipe

msftedit

RichComboBoxWndProc
SetCustomTextOutHandlerEx
RichListBoxWndProc
RichEditWndProc

shell32

SHGetDiskFreeSpaceA
SHGetDiskFreeSpaceA
ExtractIconA
DragAcceptFiles
ShellMessageBoxA
DragQueryFileA
ShellMessageBoxA
ShellAboutA
SHGetSettings
StrChrA
SHGetMalloc
DuplicateIcon
SHGetMalloc

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 385KB - Virtual size: 860KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 81B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy