94e5dc2f08c7e9799afe87c5d93e3887bc1834aad8b5970e0ebf5172be024e91 | Triage

Submit
Reports

Overview

overview

Static

static

94e5dc2f08...91.exe

windows7-x64

94e5dc2f08...91.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

94e5dc2f08c7e9799afe87c5d93e3887bc1834aad8b5970e0ebf5172be024e91.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

94e5dc2f08c7e9799afe87c5d93e3887bc1834aad8b5970e0ebf5172be024e91.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

94e5dc2f08c7e9799afe87c5d93e3887bc1834aad8b5970e0ebf5172be024e91
Size

451KB
MD5

7830ffd1b677bc3c58465fdf37e9b75a
SHA1

3a5fba12b3dbbdd3ef1191c54c34ff5c4c125206
SHA256

94e5dc2f08c7e9799afe87c5d93e3887bc1834aad8b5970e0ebf5172be024e91
SHA512

12a5b6e1f80c4da01d2f1660d6d753642887ff382dbe70441b170fc01d4ddd60475d4af4247167e3d2cd79e6ff9a025ff785764bda8b2ae4e5e9f6f3209b17f9
SSDEEP

12288:uYMwdk//psFei2YAb2gtCHGNE2Qy1/yjzdqBbHCE7:uYUXpsFj2YmomNv4qbiE7

Score

N/A

Malware Config

Signatures

Files

94e5dc2f08c7e9799afe87c5d93e3887bc1834aad8b5970e0ebf5172be024e91
.exe windows x86

60870a032399dc79d32cd92154ba38e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalSize
GetModuleFileNameA
HeapFree
GetModuleHandleA
ExitThread
HeapCreate
VirtualQuery
CancelIo
FindClose
GetCurrentThreadId
FindVolumeClose
GetCommandLineA
CreateDirectoryA
GetCurrentDirectoryW
CloseHandle
GetFileAttributesA
lstrlenA
GetFileTime
GetDriveTypeA
WaitForMultipleObjects
WriteFile
GetFileType
CreateSemaphoreA
FindVolumeClose
IsBadReadPtr

uxtheme

DrawThemeEdge
IsThemeActive
GetThemeTextMetrics
CloseThemeData
DrawThemeBackground
GetThemeBool
GetThemeTextExtent
OpenThemeData
GetWindowTheme
CloseThemeData
GetThemeEnumValue
GetThemeColor
SetWindowTheme

fmifs

Extend
Extend
Extend
Extend

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 443KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy