baeb76fade75e270e801948f9745a5a94353edc9c670f82147d808b5c210cc9e | Triage

Submit
Reports

Overview

overview

Static

static

baeb76fade...9e.exe

windows7-x64

baeb76fade...9e.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

baeb76fade75e270e801948f9745a5a94353edc9c670f82147d808b5c210cc9e.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

baeb76fade75e270e801948f9745a5a94353edc9c670f82147d808b5c210cc9e.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

baeb76fade75e270e801948f9745a5a94353edc9c670f82147d808b5c210cc9e
Size

382KB
MD5

7047a0603fdd0f88b864ff49bf2c7d98
SHA1

f54c75eb189448cc76d5c1155bd76d2f7560a471
SHA256

baeb76fade75e270e801948f9745a5a94353edc9c670f82147d808b5c210cc9e
SHA512

8014101a7813a4b9693b20ec7d6649bb139e71cdda3e54218bd8252804082568fd4005e48fa17c35dff62ace06cfc91ac5ea449b301642b965cec5e59940ba76
SSDEEP

6144:RHvWQRMDrPanRgkr/TbWz6b+vzR1vED0sj+SBl4qA4/qylPzgNbwjZUE79rlnMqa:JvzRM/CRn/Tq2K7R100E++l4qh/qabGM

Score

N/A

Malware Config

Signatures

Files

baeb76fade75e270e801948f9745a5a94353edc9c670f82147d808b5c210cc9e
.exe windows x86

f2e3e8016b3371b8a38bcfcd55f6173f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
ResetEvent
LocalFree
GetEnvironmentVariableW
GlobalFree
LoadLibraryW
CloseHandle
lstrlenA
GlobalFlags
IsBadStringPtrA
GetCurrentThreadId
SetEvent
GetLocalTime
ReleaseMutex
GetPrivateProfileIntA
GetDriveTypeA
WriteFile
VirtualAllocEx
GetCurrentProcessId
InterlockedExchange

advapi32

RegCloseKey
RegDeleteValueA
ControlService
RegCreateKeyExW
IsValidSecurityDescriptor
InitializeSid
ClearEventLogW
RegEnumKeyA
IsValidSid
CloseEventLog
RegQueryValueW
CreateServiceW
IsTextUnicode
InitializeSid

loghours

DialinHoursDialog
DialinHoursDialog
DialinHoursDialog
DialinHoursDialog
DialinHoursDialog

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 371KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy