d00cb70b382c49cedbbadea0aaf30e3f9607a72c362a65b4e65b245dd37fc9b5 | Triage

Submit
Reports

Overview

overview

Static

static

d00cb70b38...b5.exe

windows7-x64

3

d00cb70b38...b5.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d00cb70b382c49cedbbadea0aaf30e3f9607a72c362a65b4e65b245dd37fc9b5.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d00cb70b382c49cedbbadea0aaf30e3f9607a72c362a65b4e65b245dd37fc9b5.exe

Resource

win10v2004-20220812-en

sality backdoor evasion trojan upx

windows10-2004-x64

13 signatures

150 seconds

General

Target

d00cb70b382c49cedbbadea0aaf30e3f9607a72c362a65b4e65b245dd37fc9b5
Size

92KB
MD5

0c33ff4218fd340351a0fa27f17ba5f0
SHA1

ca1b74216d7b250eefbfe69ef0a134b0453fec67
SHA256

d00cb70b382c49cedbbadea0aaf30e3f9607a72c362a65b4e65b245dd37fc9b5
SHA512

877430822ef6171fea6089fb60ef6d0fc2d5919784442a711ce293c43d2408fd33a7b5a6cf9a555fec827c8c3d15e0b7527bdec5f9a9a9310a461ca57990ef22
SSDEEP

1536:SOFzgb0tGZWFWVmq8keza8ACAt0DEWXaR974CMLBmEl3EF2zSTc3iS:9tg0tGZWWmq8kezJ8SzaR974CABmEVEY

Score

N/A

Malware Config

Signatures

Files

d00cb70b382c49cedbbadea0aaf30e3f9607a72c362a65b4e65b245dd37fc9b5
.exe windows x86

2bed3b575b122ce7042753fe75b3b7d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FormatMessageA
GetLastError
SetLastError
VirtualAlloc
CloseHandle
MapViewOfFile
CreateFileMappingA
VirtualFree
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
GetModuleFileNameA
GetModuleFileNameW
SetEnvironmentVariableW
SetEnvironmentVariableA
WideCharToMultiByte
UnmapViewOfFile
lstrcpynW
GetFullPathNameW
GetFullPathNameA
HeapAlloc
GetProcessHeap
GetFileSize
ReadFile
SetFilePointer
CreateFileW
GetEnvironmentVariableW
CreateFileA
GetEnvironmentVariableA
GetVersion

user32

MessageBoxA

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy