8b637f86c7550a75f4a27dfaacea8337185d073c83ceb127aa7ea07b97a3f276 | Triage

Submit
Reports

Overview

overview

Static

static

8b637f86c7...76.exe

windows7-x64

8b637f86c7...76.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8b637f86c7550a75f4a27dfaacea8337185d073c83ceb127aa7ea07b97a3f276.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

8b637f86c7550a75f4a27dfaacea8337185d073c83ceb127aa7ea07b97a3f276.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8b637f86c7550a75f4a27dfaacea8337185d073c83ceb127aa7ea07b97a3f276
Size

372KB
MD5

028f837c3cdf3ad32747b3011a5883a0
SHA1

910206ac3d65c55ef43746f5246d1ab643669f36
SHA256

8b637f86c7550a75f4a27dfaacea8337185d073c83ceb127aa7ea07b97a3f276
SHA512

07931e01e00f64b45a795e1e2fa41671621db11c85f8d3d82320d1ce8b7bacaee9ef37097eb1dff8aed7dbf5115b4d21e005862dd4ec751037f72c49c3c18532
SSDEEP

6144:xdjvjVcVAC2FXgEr8fE0ASg3/YQvRNMVlJi41fv4Dw:zvjVkCrSvoZNyl5fwD

Score

N/A

Malware Config

Signatures

Files

8b637f86c7550a75f4a27dfaacea8337185d073c83ceb127aa7ea07b97a3f276
.exe windows x86

dba8d5336e4b6c5c28792bdea1b2f7c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
GetDriveTypeA
GetExitCodeProcess
ReadFile
lstrlenA
ReleaseMutex
GetComputerNameW
FindVolumeClose
GlobalFree
GetTickCount
LocalFree
GetPrivateProfileIntW
VirtualAlloc
CloseHandle
GetLocalTime
ExitThread
CreateFileW
GlobalSize
GetModuleHandleW
FreeConsole

user32

CreateWindowExA
GetDlgItem
DrawStateW
GetClassInfoA
EndDialog
DispatchMessageA
GetKeyState
CallWindowProcA
GetSysColor
SetFocus
GetCursorInfo
GetClientRect
GetMenu

clbcatq

ComPlusMigrate
DllGetClassObject
ComPlusMigrate
ComPlusMigrate
ComPlusMigrate

ntshrui

IsPathSharedA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy