011d4c3089627ba56f5f2ac6ad8e411dd1e678fd86575ac43da080e4c1e8f115 | Triage

Submit
Reports

Overview

overview

Static

static

011d4c3089...15.exe

windows7-x64

011d4c3089...15.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

011d4c3089627ba56f5f2ac6ad8e411dd1e678fd86575ac43da080e4c1e8f115.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

011d4c3089627ba56f5f2ac6ad8e411dd1e678fd86575ac43da080e4c1e8f115.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

011d4c3089627ba56f5f2ac6ad8e411dd1e678fd86575ac43da080e4c1e8f115
Size

393KB
MD5

3fb1e4774a468108303a9328ecf2e129
SHA1

b495200c3b3c526b1d366b32abac7ac7df618216
SHA256

011d4c3089627ba56f5f2ac6ad8e411dd1e678fd86575ac43da080e4c1e8f115
SHA512

d536c17a2f861055afdb2f20d8d2e65649548e64f6225cd7f2095e131a71eef5289e1dd47c2861365f727aee0430de3753cd9b8cca56f6450f4c496df448d1f7
SSDEEP

6144:CXxg7dUShNmPhlen1GJw9B1uqY1dZHhptjYUxevM79lWzuDRsxyYZvy0TDjM78to:Ug7dUmmLen1G6Lkjr7plWzuDRsVqqIH

Score

N/A

Malware Config

Signatures

Files

011d4c3089627ba56f5f2ac6ad8e411dd1e678fd86575ac43da080e4c1e8f115
.exe windows x86

3f14b9e33a9fdfa206309e41cf455070

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasA
GlobalUnlock
FindClose
TlsGetValue
GetModuleHandleA
LocalLock
Sleep
FindAtomA
GetConsoleCP
CreateFileA
GetACP
FreeEnvironmentStringsA
CreateFileMappingA
HeapCreate
GetCalendarInfoA
LocalFree
CloseHandle
GetLastError
LoadLibraryExA
WaitForMultipleObjects

user32

CascadeWindows
CheckRadioButton
SetFocus
DispatchMessageA
DrawTextA
IsWindow
DrawEdge
FillRect
GetDC
DefWindowProcA
GetDlgItem
GetIconInfo
CallWindowProcA
MessageBoxA

setupapi

SetupCloseInfFile
CMP_Report_LogOn
SetupCloseLog
CM_Add_IDA
CM_Add_Range

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy