0d58d890171deb4ba4458eea3705bedf4989cb9a0448c37386cfc1b6a3687fd4 | Triage

Submit
Reports

Overview

overview

Static

static

0d58d89017...d4.exe

windows7-x64

0d58d89017...d4.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0d58d890171deb4ba4458eea3705bedf4989cb9a0448c37386cfc1b6a3687fd4.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

0d58d890171deb4ba4458eea3705bedf4989cb9a0448c37386cfc1b6a3687fd4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

0d58d890171deb4ba4458eea3705bedf4989cb9a0448c37386cfc1b6a3687fd4
Size

340KB
MD5

0068a4f226db55394a9c4c2d1a1c42b6
SHA1

a4d4825c3046ddc5ed1d4c3b2cae0b623cd8f461
SHA256

0d58d890171deb4ba4458eea3705bedf4989cb9a0448c37386cfc1b6a3687fd4
SHA512

a5e2ba3bc8580837325f2fa889da8119e3cf8e5cf6fc36cc133f4e1fb33c8d0a2365706cfb2d21af3caa504dad50604c8c20b05f09aed8771c463bbbc00d8d05
SSDEEP

6144:yatxLcSj5PSXyggMfOLRTYO+9wTLfdvyhEwFUsjRLTt+/QCDwCN:hFhgh2R8O+yFqpLh+YCDJN

Score

N/A

Malware Config

Signatures

Files

0d58d890171deb4ba4458eea3705bedf4989cb9a0448c37386cfc1b6a3687fd4
.exe windows x86

9ff99201df3437638979f3c73111e45a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
LocalFree
GlobalLock
GetACP
MapViewOfFile
CreateEventA
IsBadReadPtr
GetModuleHandleA
GetConsoleCP
GetStdHandle
lstrlenA
FindClose
GetLastError
IsDebuggerPresent
FreeEnvironmentStringsA
GlobalUnlock
CreateFileA
LoadLibraryExA
HeapCreate
CreateWaitableTimerA

user32

CheckMenuItem
GetDlgItem
CreateWindowExA
ClipCursor
GetParent
GetMessageA
GetSubMenu
IsMenu
RedrawWindow
GetDlgItemTextA
DialogBoxParamA
EndDialog
SetFocus
DrawIconEx

apphelp

ApphelpCheckIME
SdbCloseDatabase
ApphelpCheckRunApp
SdbFindFirstTag
ApphelpShowDialog

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy