cb7d8252b2886f979e54e8a74f545eaabb86f7b34b18e12c2b9a19849d0d6409 | Triage

Submit
Reports

Overview

overview

Static

static

cb7d8252b2...09.exe

windows7-x64

cb7d8252b2...09.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

cb7d8252b2886f979e54e8a74f545eaabb86f7b34b18e12c2b9a19849d0d6409.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb7d8252b2886f979e54e8a74f545eaabb86f7b34b18e12c2b9a19849d0d6409.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

cb7d8252b2886f979e54e8a74f545eaabb86f7b34b18e12c2b9a19849d0d6409
Size

395KB
MD5

07910b6c5510359ce78296c66cc669c0
SHA1

bacdefedd380e9a0b434b9b5441878ba55734037
SHA256

cb7d8252b2886f979e54e8a74f545eaabb86f7b34b18e12c2b9a19849d0d6409
SHA512

54944e8cb6a1b53933d01e26b1be62b45c561d09104f299737db6db3c87f6e42dc14ecd3e6d837c838c7996905bf88ed59051b27d9d14cebf24c2cee0e8c937f
SSDEEP

12288:Kw+R+a1EI+8OXVE0Ax11zewT6+ZfyEowv:KTt1XN19ewe+Z3o

Score

N/A

Malware Config

Signatures

Files

cb7d8252b2886f979e54e8a74f545eaabb86f7b34b18e12c2b9a19849d0d6409
.exe windows x86

a7fbad652c3fdb0eb6f9f790c020374c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapCreate
WriteConsoleW
SetPriorityClass
lstrcpyW
GetLastError
GetModuleHandleA
IsBadStringPtrA
GetCurrentDirectoryA
GetFileAttributesA
GetFileSize
CloseHandle
IsBadCodePtr
GetFileTime
WriteConsoleW
IsValidLocale
GetStartupInfoA
lstrlenW
WriteConsoleW
CopyFileW
ReleaseMutex
CreatePipe

msftedit

SetCustomTextOutHandlerEx
RichComboBoxWndProc
RichEditWndProc
RichListBoxWndProc

shell32

StrChrA
SHGetMalloc
ShellMessageBoxA
DragAcceptFiles
ShellAboutA
DuplicateIcon
SHGetFileInfoA
ShellAboutA
ShellMessageBoxA
SHGetSettings
SHGetMalloc
ExtractIconA
DragQueryFileA

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 385KB - Virtual size: 880KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy