8439b750d8aba4dba489854d4621427f296fa0306fd6a45071d51d962e4f2a5a | Triage

Submit
Reports

Overview

overview

Static

static

8439b750d8...5a.exe

windows7-x64

8439b750d8...5a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8439b750d8aba4dba489854d4621427f296fa0306fd6a45071d51d962e4f2a5a.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

8439b750d8aba4dba489854d4621427f296fa0306fd6a45071d51d962e4f2a5a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8439b750d8aba4dba489854d4621427f296fa0306fd6a45071d51d962e4f2a5a
Size

390KB
MD5

a05499cb0847122d6fc8ba5d3e21bcc0
SHA1

3c1af57a942c91055cb5886493bf5e4af98faf40
SHA256

8439b750d8aba4dba489854d4621427f296fa0306fd6a45071d51d962e4f2a5a
SHA512

04c15f968945af05522b3861ed3aca4260f4dd4000a7fc9f120aca90da58f44e81f8090cd77175e9d1a9f1ea9b8cdaf633074c3480067b26d9b6d13a5acbaf87
SSDEEP

6144:xUvvEBApuMkrc7mRnQzpCMstSRe4WnmI0zqFbYHSieZzHlwtdF+Nw5ViXQelKevU:xWvXuMk47mVSQPCesdqcLgHlQFoRQS

Score

N/A

Malware Config

Signatures

Files

8439b750d8aba4dba489854d4621427f296fa0306fd6a45071d51d962e4f2a5a
.exe windows x86

d8810830e07637157220df7642c89db5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
GetCurrentThreadId
GetTickCount
GetProcessVersion
CreateFileW
GetFileAttributesA
HeapDestroy
OpenEventW
IsValidLocale
OpenMutexW
SetFilePointer
SetFileTime
GetModuleHandleA
GlobalFlags
InterlockedExchange
GetVolumePathNameA
GetDriveTypeW
LeaveCriticalSection
DeleteFileW
GetModuleFileNameA
CreateDirectoryA
PulseEvent
CreateFileW
DeleteFileW
VirtualProtectEx

user32

DestroyIcon
wsprintfA
MessageBoxA
DestroyMenu
IsMenu
LoadCursorA
GetWindowTextA
SetRect
PeekMessageA
DispatchMessageA
GetWindowLongA
GetWindowLongA
SetFocus

dbnetlib

InitSession
ConnectionClose
ConnectionError
ConnectionOpen

advapi32

IsValidAcl

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 380KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy