93361aea837c73c75f9067700572262e69d1cfbfa6634e7ea8f249701e1fdebb | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

93361aea837c73c75f9067700572262e69d1cfbfa6634e7ea8f249701e1fdebb.exe

Resource

win10v2004-20220812-en

quasar venomrat asdf evasion persistence rat rootkit spyware stealer trojan

windows10-2004-x64

15 signatures

150 seconds

General

Target

93361aea837c73c75f9067700572262e69d1cfbfa6634e7ea8f249701e1fdebb
Size

867KB
MD5

dac30ab400ec6be2daa29718ea6d0a3e
SHA1

06320ebc648623885645657fd2a72a728f2441cd
SHA256

93361aea837c73c75f9067700572262e69d1cfbfa6634e7ea8f249701e1fdebb
SHA512

67f360d49625822199c133981c4077d88d9ec2347386858f33d08d6b6f37c15af0c56cf9772e0fb819072ab4b63b13eb334237ccd727ce91cad9b68ab47ec58c
SSDEEP

12288:3ARp0gFW4q6AD9/Gz8hQOFPA/OcMowPzQvEXpqCctQHNM:2igFW4qbx/GY7Y/jw7tICct4a

Score

N/A

Malware Config

Signatures

Files

93361aea837c73c75f9067700572262e69d1cfbfa6634e7ea8f249701e1fdebb
.exe windows x86

1569f8c4908e4c5bdfd289a10b809989

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
ord588
ord696
ord697
MethCallEngine
ord516
ord519
ord660
ord557
ord666
ord667
ord591
ord593
ord594
ord595
ord596
ord598
ord631
ord525
ord526
EVENT_SINK_AddRef
ord527
ord529
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord606
ord607
ord714
ord716
ord717
ord319
ProcCallEngine
ord535
ord537
ord644
ord645
ord538
ord648
ord572
ord573
ord681
ord576
ord685
ord100
ord689
ord320
ord321
ord616
ord618
ord619
ord650
ord652
ord581

Sections

.text
Size: 316KB - Virtual size: 314KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy