11e2ffc9cb60e871f7b82fda9c21c03dbc9876c681b5d0e18ef26af568e0e41c | Triage

Submit
Reports

Overview

overview

Static

static

11e2ffc9cb...1c.exe

windows7-x64

11e2ffc9cb...1c.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

11e2ffc9cb60e871f7b82fda9c21c03dbc9876c681b5d0e18ef26af568e0e41c.exe

Resource

win7-20220812-en

darkcomet chidi persistence rat trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

11e2ffc9cb60e871f7b82fda9c21c03dbc9876c681b5d0e18ef26af568e0e41c.exe

Resource

win10v2004-20220812-en

darkcomet chidi persistence rat trojan upx

windows10-2004-x64

7 signatures

150 seconds

General

Target

11e2ffc9cb60e871f7b82fda9c21c03dbc9876c681b5d0e18ef26af568e0e41c
Size

546KB
MD5

e6aec00955e8af7c27744ce280b6130a
SHA1

68d38f5235e1aceb89e03adb1cff2d73fcfeec7d
SHA256

11e2ffc9cb60e871f7b82fda9c21c03dbc9876c681b5d0e18ef26af568e0e41c
SHA512

7abcb3607e7f720e6433006dcc7a9211c9b5c1590e07539c761b9c7b48a10ad01f3af224e190e958098f1aaeb13916adfb8298a2e45b6fd92be8343618289c98
SSDEEP

12288:NizKtf3Vbio8GmMEpLqRX7u09nX3il4PAfs+r:Vtdb78GmMEpLGXNwLEk

Score

N/A

Malware Config

Signatures

Files

11e2ffc9cb60e871f7b82fda9c21c03dbc9876c681b5d0e18ef26af568e0e41c
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

23:fb:a3:c9:7a:11:f8:97:41:32:0b:92:97:4c:95:ae
Certificate

Issuer

CN={E104C83A-E8AF-427F-BE2F-A4A684A08C2E}

Not Before

18/03/2014, 14:32

Not After

18/03/2015, 20:32

Subject

CN={E104C83A-E8AF-427F-BE2F-A4A684A08C2E}

a7:79:36:10:64:a2:e4:16:bb:85:37:09:c1:92:f1:36:cb:bb:c6:87
Signer

Actual PE Digest

a7:79:36:10:64:a2:e4:16:bb:85:37:09:c1:92:f1:36:cb:bb:c6:87

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN={E104C83A-E8AF-427F-BE2F-A4A684A08C2E}

04/11/2022, 15:41
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 445KB - Virtual size: 444KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy