98f59c006b4040d9fd51bd6a09524be8728788ffb789c17e30e87bd4afa070a5 | Triage

Submit
Reports

Overview

overview

Static

static

98f59c006b...a5.exe

windows7-x64

98f59c006b...a5.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

98f59c006b4040d9fd51bd6a09524be8728788ffb789c17e30e87bd4afa070a5.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

98f59c006b4040d9fd51bd6a09524be8728788ffb789c17e30e87bd4afa070a5.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

98f59c006b4040d9fd51bd6a09524be8728788ffb789c17e30e87bd4afa070a5
Size

393KB
MD5

17fb1da5fc0c84a7c8e115eff8031d4c
SHA1

eb00980be09b0eb0d6ffc5e7d9f0efb42d643535
SHA256

98f59c006b4040d9fd51bd6a09524be8728788ffb789c17e30e87bd4afa070a5
SHA512

43c5f33f3d1747afc58d3616f8aa524c7ac93b8354e3e741285deaddd7e8c70be80a25ec7a745bade922546751e94008c63b1ec6f38f4953dc8463e02e05bb06
SSDEEP

6144:8HtT6S1dGppg6gUmXepiZujTthY8fMccz907DP3dMKsucbTb9Vhpfn2YMLiV:QdGppg0zj7Y8Sz96jdbsucLJpM+V

Score

N/A

Malware Config

Signatures

Files

98f59c006b4040d9fd51bd6a09524be8728788ffb789c17e30e87bd4afa070a5
.exe windows x86

453fea86fbb17233ba7cbac19d35a610

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
GetStdHandle
GetModuleHandleA
TlsGetValue
LoadLibraryExA
GlobalLock
LocalUnlock
GetLastError
CloseHandle
LocalFree
CreateFileA
IsBadReadPtr
FindClose
GetACP
FreeEnvironmentStringsA
HeapCreate
CreateEventA
CreateFileMappingA
GetConsoleCP
IsDebuggerPresent

user32

EndDialog
EmptyClipboard
SetFocus
GetDC
GetIconInfo
ScrollWindow
GetMessageA
DefWindowProcA
GetDlgItem
PostMessageA
CreateDialogParamA
DispatchMessageA
IsWindow
DrawIconEx

msasn1

ASN1BEREncLength
ASN1BERDecBool
ASN1BEREncFlush
ASN1BERDecCheck
ASN1BERDecEoid

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy