2be8b8b433dcf9a4814c29810576f4f07ca33981d51630e4fa8782fd1c3e2c8d | Triage

Submit
Reports

Overview

overview

Static

static

2be8b8b433...8d.exe

windows7-x64

2be8b8b433...8d.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2be8b8b433dcf9a4814c29810576f4f07ca33981d51630e4fa8782fd1c3e2c8d.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

2be8b8b433dcf9a4814c29810576f4f07ca33981d51630e4fa8782fd1c3e2c8d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

2be8b8b433dcf9a4814c29810576f4f07ca33981d51630e4fa8782fd1c3e2c8d
Size

355KB
MD5

5446c6ef4f34a8f22debbcaa37326cc9
SHA1

36aa69a07591648af722889bd4b053abba617b70
SHA256

2be8b8b433dcf9a4814c29810576f4f07ca33981d51630e4fa8782fd1c3e2c8d
SHA512

7cca2b0205bb0a3fd971d1b24cd746576104e8edf7e3cba02e5bfb43b0dd8cd6d74c57d941c0857b191da246fc99f0c37062d62c972365822158d9eaffd50150
SSDEEP

6144:O8i/+/8J4wHxSlGPQBaZ+BqhMXAy6fYv2SeJ3eB8fvmKNNcQ5ta6gKv5R3L/XWlJ:7wR9QI0Ay6fYvzEOe2KNSQ6l83zBzsu+

Score

N/A

Malware Config

Signatures

Files

2be8b8b433dcf9a4814c29810576f4f07ca33981d51630e4fa8782fd1c3e2c8d
.exe windows x86

74c34cc45ef28a5201585e916f841011

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetDiskFreeSpaceW
ResumeThread
GetModuleHandleW
SuspendThread
GetFileAttributesA
LoadLibraryA
ExitProcess
ResetEvent
CloseHandle
GetComputerNameW
GetCommandLineW
LocalFree
lstrlenA
GetTickCount
VirtualAlloc
FindAtomW
GetPrivateProfileIntA
GetTickCount
GetSystemTime

user32

GetCaretPos
CloseWindow
FillRect
CallWindowProcA
DispatchMessageA
DrawStateA
CreateWindowExA
DestroyCaret
GetMenu
GetClientRect
GetDlgItem
EndDialog
GetClassInfoA

rasapi32

DwCloneEntry
RasDeleteEntryA
RasDialA
DwEnumEntryDetails
DwRasUninitialize

adsnt

DllGetClassObject

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 440KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 346KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy