5de44eb25e2d369e5f8741b2c9cd38b206dc0509843f82ecbdd0e6b22751a115 | Triage

Submit
Reports

Overview

overview

Static

static

5de44eb25e...15.exe

windows7-x64

5de44eb25e...15.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5de44eb25e2d369e5f8741b2c9cd38b206dc0509843f82ecbdd0e6b22751a115.exe

Resource

win7-20221111-en

xtremerat persistence rat spyware upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

5de44eb25e2d369e5f8741b2c9cd38b206dc0509843f82ecbdd0e6b22751a115.exe

Resource

win10v2004-20221111-en

xtremerat persistence rat spyware upx

windows10-2004-x64

10 signatures

150 seconds

General

Target

5de44eb25e2d369e5f8741b2c9cd38b206dc0509843f82ecbdd0e6b22751a115
Size

75KB
MD5

44849a4fcbdfb3bffd8278a604b9f5f3
SHA1

b659e99bcb83ebef6bb4de55ea166ec5b7b0d8aa
SHA256

5de44eb25e2d369e5f8741b2c9cd38b206dc0509843f82ecbdd0e6b22751a115
SHA512

e28ecd335f5591a1e77f590058baf4d25c5cbc08ea156be03f0ca9a4de340785515dbbe97c230944d10fec3984d04a64a67bec64827c212fe6707337ed8b9558
SSDEEP

768:jq/sRc77k+TNQGSWbgLa1pSqWYjNtI/7OYpu/lj3Yle7mWx4:LRc77dBKLaPjHI/7nMke7rx4

Score

N/A

Malware Config

Signatures

Files

5de44eb25e2d369e5f8741b2c9cd38b206dc0509843f82ecbdd0e6b22751a115
.exe windows x86

b05d5ec857562bdee5880c9fb8a50f5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
ExitProcess
FindAtomA
GetAtomNameA
GetCommandLineA
GetModuleFileNameW
GetModuleHandleA
GetStartupInfoA
SetUnhandledExceptionFilter

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_iob
_onexit
_setmode
abort
atexit
fflush
fprintf
free
malloc
memset
pow
signal
strcmp
strcpy
strlen
strncmp

Sections

text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 208B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tina
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy