a8ad5ea18c7ee88bcc728ac59ed95df31939403fa89f9fb38839787e270201aa | Triage

Submit
Reports

Overview

overview

Static

static

a8ad5ea18c...aa.exe

windows7-x64

a8ad5ea18c...aa.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a8ad5ea18c7ee88bcc728ac59ed95df31939403fa89f9fb38839787e270201aa.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

a8ad5ea18c7ee88bcc728ac59ed95df31939403fa89f9fb38839787e270201aa.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a8ad5ea18c7ee88bcc728ac59ed95df31939403fa89f9fb38839787e270201aa
Size

367KB
MD5

a293cba8e5c91f3525b8e86d973ca78e
SHA1

ad799a8be2f1a2a60d273490ddc9d1fe1e6cdd2d
SHA256

a8ad5ea18c7ee88bcc728ac59ed95df31939403fa89f9fb38839787e270201aa
SHA512

9378c540d48956f095be606e58a031c8446a1d50743e348c6fc2bdc02b01a127202926ffdd28f2fa26005bcacab1586c92749d1d5277b418974683bf6ef1279e
SSDEEP

6144:bhFRMQhrVf/DRauRHlwrFYaN5ino7241GtMqzIXPH8CV+mybPzKP3zUeXm9+r:b7RM2rpDneFNzino7IUHybPzQjUeX

Score

N/A

Malware Config

Signatures

Files

a8ad5ea18c7ee88bcc728ac59ed95df31939403fa89f9fb38839787e270201aa
.exe windows x86

3a5bd4e5cb5acede53cd67423e11725c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberFormatW
lstrlenW
ResumeThread
LocalFree
HeapCreate
GetDriveTypeW
EnterCriticalSection
TlsGetValue
FindAtomW
GetCurrentThreadId
ReadFile
SetEvent
SetLastError
GetModuleHandleA
GetModuleFileNameA
FindClose
GetCurrentProcessId
EnumCalendarInfoW
GetPrivateProfileStringW
GetConsoleAliasW

user32

DispatchMessageA
GetCursorInfo
DrawTextA
IsWindow
GetKeyboardType
GetClientRect
GetMenuInfo
GetKeyState
SetFocus
GetClassInfoA
CallWindowProcW
GetSysColor
DispatchMessageA

wsnmp32

SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 357KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy