b6ed7e0f44303c6b2209683c7fd17d7b8fff65674cc274ba2fb368e503511112 | Triage

Submit
Reports

Overview

overview

Static

static

b6ed7e0f44...12.exe

windows7-x64

b6ed7e0f44...12.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b6ed7e0f44303c6b2209683c7fd17d7b8fff65674cc274ba2fb368e503511112.exe

Resource

win7-20220812-en

sality backdoor evasion trojan upx

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

b6ed7e0f44303c6b2209683c7fd17d7b8fff65674cc274ba2fb368e503511112.exe

Resource

win10v2004-20220812-en

sality backdoor evasion trojan upx

windows10-2004-x64

15 signatures

150 seconds

General

Target

b6ed7e0f44303c6b2209683c7fd17d7b8fff65674cc274ba2fb368e503511112
Size

1.4MB
MD5

2d6bf1320e7b773878fe3d89ae0df590
SHA1

19ccc669ef87da51482b6ab35e315f22c8652e88
SHA256

b6ed7e0f44303c6b2209683c7fd17d7b8fff65674cc274ba2fb368e503511112
SHA512

396bd7022e8a9031c58690066a9299f21e596e2ea04777cf12d4c661d3e7a1507f6084b53399db9a5f79f5a3994dd27131a573de13bcfcec1232ec27f76c79a7
SSDEEP

24576:nbcfFNHS8xUfKf1EAMdQSvwpot//LEgJWOxI3O74N0y5CCeXpobLktTw:ozy8xUfKf1EAM5vwQTjJWgL4N0C8uLes

Score

N/A

Malware Config

Signatures

Files

b6ed7e0f44303c6b2209683c7fd17d7b8fff65674cc274ba2fb368e503511112
.exe windows x86

2edc1c54f961df9901f92487cef16292

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
GlobalAlloc
GlobalFree
ExitProcess

advapi32

RegCreateKeyA

gdi32

CreateCompatibleDC

user32

MessageBoxA

version

GetFileVersionInfoA

shfolder

SHGetFolderPathW

comctl32

InitCommonControlsEx

ole32

CoCreateInstance

comdlg32

GetSaveFileNameW

shell32

CommandLineToArgvW

oleaut32

SysAllocString

Exports

Exports

Ox12345678

Sections

.text
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

stxt774
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

stxt371
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy