a45e75b036ff0a0fadfd9483eeb249c35b4d1a66ae7822c67f36ac792b53fb6f | Triage

Submit
Reports

Overview

overview

Static

static

a45e75b036...6f.exe

windows7-x64

a45e75b036...6f.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a45e75b036ff0a0fadfd9483eeb249c35b4d1a66ae7822c67f36ac792b53fb6f.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

a45e75b036ff0a0fadfd9483eeb249c35b4d1a66ae7822c67f36ac792b53fb6f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

a45e75b036ff0a0fadfd9483eeb249c35b4d1a66ae7822c67f36ac792b53fb6f
Size

417KB
MD5

9c0806ba6121b1433d8048f0f1352498
SHA1

d2824f63b0c48d067b5588f9243003f49867f241
SHA256

a45e75b036ff0a0fadfd9483eeb249c35b4d1a66ae7822c67f36ac792b53fb6f
SHA512

091d5f79e97e763209afd6655867cfa09b10c9639e33d150ca61efff71ace99a718555bb9512fe4e16fa06438075b64aa01188be2f7c0b12b6d992e1be11f8b1
SSDEEP

6144:GcjUnXf3oe1lP01u/0FxRMVkTWh5yGLwYu6/R+MexmitdHR/OKAWp2DeeHRabWjy:GZv4e70oMeJ5yGLfo3H4RaQy

Score

N/A

Malware Config

Signatures

Files

a45e75b036ff0a0fadfd9483eeb249c35b4d1a66ae7822c67f36ac792b53fb6f
.exe windows x86

0fb3bcfe203dac828b18a872dc6b47df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
GetEnvironmentVariableW
FindClose
GetStringTypeA
GetFullPathNameW
GetVolumePathNameW
HeapCreate
CreatePipe
GetCurrentDirectoryW
CreateMailslotA
GetFullPathNameW
SetVolumeLabelA
GetModuleHandleW
FindClose
CreateFileMappingA
CopyFileA
CreateFileA
ReadConsoleW
GetModuleHandleA
VirtualFree
CreateEventA
Sleep
CreateSemaphoreA

mshtml

PrintHTML
DllCanUnloadNow
DllGetClassObject
ShowModalDialog

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES
Size: 410KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy