73be1b6ade02b1680f3b6f54bb500dd54805eb4a7c6d876f7a6d36e1957a10b1 | Triage

Submit
Reports

Overview

overview

Static

static

73be1b6ade...b1.exe

windows7-x64

73be1b6ade...b1.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

73be1b6ade02b1680f3b6f54bb500dd54805eb4a7c6d876f7a6d36e1957a10b1.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

73be1b6ade02b1680f3b6f54bb500dd54805eb4a7c6d876f7a6d36e1957a10b1.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

73be1b6ade02b1680f3b6f54bb500dd54805eb4a7c6d876f7a6d36e1957a10b1
Size

450KB
MD5

55db097fe0fb2b27de4864219d30b047
SHA1

06951f5e442f5377db11c2da81e7f77dc8521556
SHA256

73be1b6ade02b1680f3b6f54bb500dd54805eb4a7c6d876f7a6d36e1957a10b1
SHA512

ce2a01be0e017e6cb85eadb0951c3a3e69d3745de45ea867e7fc06de9d5c91a31c35c72a08faefd2f65438dfbd315a34014837f884cc421434c656987d811337
SSDEEP

12288:CVq02LdgiUHAoGac2ou8R30sjd9j2uU4OXwehfNA:h5FUfBlo5306j9UpXweh2

Score

N/A

Malware Config

Signatures

Files

73be1b6ade02b1680f3b6f54bb500dd54805eb4a7c6d876f7a6d36e1957a10b1
.exe windows x86

a993b35daa8f760e25b02cf3929a92aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindVolumeClose
CloseHandle
FindVolumeClose
LocalSize
CreateSemaphoreA
CancelIo
GetFileAttributesA
GetCurrentThreadId
FindClose
WriteFile
WaitForMultipleObjects
HeapFree
HeapCreate
VirtualQuery
GetModuleHandleA
GetFileTime
GetFileType
GetCommandLineA
GetModuleFileNameA
GetDriveTypeA
IsBadReadPtr
GetCurrentDirectoryW
lstrlenA
CreateDirectoryA
ExitThread

uxtheme

CloseThemeData
SetWindowTheme
GetThemeSysSize
IsThemeActive
DrawThemeBackground
OpenThemeData
CloseThemeData
DrawThemeEdge
GetThemeColor
GetThemeTextMetrics
GetThemeBool
GetThemeTextExtent
GetWindowTheme

fmifs

Extend
Extend
Extend
Extend

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 608KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 443KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy