87418c009fe58179e068dde1301313986a697826905b27fba15a7871c9ac8ee1 | Triage

Submit
Reports

Overview

overview

Static

static

87418c009f...e1.exe

windows7-x64

87418c009f...e1.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

87418c009fe58179e068dde1301313986a697826905b27fba15a7871c9ac8ee1.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

87418c009fe58179e068dde1301313986a697826905b27fba15a7871c9ac8ee1.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

87418c009fe58179e068dde1301313986a697826905b27fba15a7871c9ac8ee1
Size

370KB
MD5

b9cb5a0c0d4314afa81642c5ecb806c0
SHA1

62cefcf34d684a06edb9d867574ee69bb2e3f115
SHA256

87418c009fe58179e068dde1301313986a697826905b27fba15a7871c9ac8ee1
SHA512

46e913b0b6d686c0365eb828ed60f0cd6913afee6c7edea4f365f8b986117ff3277b7d258b2f64a20b851fcb6b3683d2c3b5a5d754d608d65fa5a80348c8b78b
SSDEEP

6144:43GyC2Cy8fumy5UGR6go/pnGSBR0HfYHkImafR7pgXcHBf5NUpY/HzERKK:4252CFumQUGQgoRGM0HfYAkRZd5mW/Hg

Score

N/A

Malware Config

Signatures

Files

87418c009fe58179e068dde1301313986a697826905b27fba15a7871c9ac8ee1
.exe windows x86

6356fa5855eb7e360ea4e05eb84c3902

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalSize
ReadFile
GetDriveTypeW
GetModuleHandleW
FindVolumeClose
GetMailslotInfo
GetExitCodeProcess
LocalFree
CreateThread
ResetEvent
lstrlenA
ReleaseMutex
VirtualAlloc
InterlockedExchange
GetPrivateProfileIntW
GlobalFree
FreeConsole
CloseHandle
CreateFileW
GetACP

user32

IsIconic
CreateWindowExA
GetClassInfoA
GetClientRect
GetDlgItem
DispatchMessageA
GetSysColor
GetKeyboardType
GetCursorInfo
DrawStateW
CallWindowProcW
EndDialog
SetFocus

dsprop

CheckADsError
CheckADsError
CheckADsError
CheckADsError
ReportError

desk.cpl

InstallScreenSaverW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 360KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy