d8c9cb0151c71acab11e227e3c573dd65e4522e518351e2aea8bb5d16e5fe598 | Triage

Submit
Reports

Overview

overview

Static

static

d8c9cb0151...98.exe

windows7-x64

d8c9cb0151...98.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d8c9cb0151c71acab11e227e3c573dd65e4522e518351e2aea8bb5d16e5fe598.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

d8c9cb0151c71acab11e227e3c573dd65e4522e518351e2aea8bb5d16e5fe598.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d8c9cb0151c71acab11e227e3c573dd65e4522e518351e2aea8bb5d16e5fe598
Size

492KB
MD5

91bcf477e9f269d0a8813edca5f4094b
SHA1

793c2ff81f9dbeecbd6dc340ffad2a61f5f75be1
SHA256

d8c9cb0151c71acab11e227e3c573dd65e4522e518351e2aea8bb5d16e5fe598
SHA512

b5056511a3d3410ef25d6dd22794116a0fd9baf5ad950636c51c9e6b1381931ae08f9947d7bd8a508f1b1dd23853be7ea5c5dd570edd6464df581b6c286d8ad0
SSDEEP

6144:gdbZ1UKa4hib4j8jf51Qx7O6bcLehsEwkoK/6ERdFQJdlMu6lb/01apjbV6m8lL:EkFx4ojf51aTcK0NEQUd0op3QlL

Score

N/A

Malware Config

Signatures

Files

d8c9cb0151c71acab11e227e3c573dd65e4522e518351e2aea8bb5d16e5fe598
.exe windows x86

06a251ca95cac996eecfce2fdc1ac3c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
SuspendThread
EnterCriticalSection
SetLastError
GetFileAttributesA
FindAtomW
GetModuleFileNameA
FindClose
GetDriveTypeW
GetModuleHandleA
GetConsoleAliasW
SetEvent
HeapCreate
LocalFree
GetCurrentThreadId
GetPrivateProfileStringW
GlobalFree
GetCurrentProcessId
EnumCalendarInfoW
CreateMailslotA

user32

SetFocus
GetClientRect
IsWindow
GetKeyState
DispatchMessageA
GetCursorInfo
GetClassInfoA
DispatchMessageA
DrawTextW
GetSysColor
CallWindowProcW
GetKeyboardType
GetMenuInfo

avicap32

videoThunk32
videoThunk32
videoThunk32
videoThunk32
videoThunk32

desk.cpl

DeskSetCurrentScheme

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 482KB - Virtual size: 482KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy