933bd01ab3512f850693017a896355736f5d23bbb0707afa16e1c90a3785e710 | Triage

Submit
Reports

Overview

overview

Static

static

933bd01ab3...10.exe

windows7-x64

933bd01ab3...10.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

933bd01ab3512f850693017a896355736f5d23bbb0707afa16e1c90a3785e710.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

933bd01ab3512f850693017a896355736f5d23bbb0707afa16e1c90a3785e710.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

933bd01ab3512f850693017a896355736f5d23bbb0707afa16e1c90a3785e710
Size

393KB
MD5

e1b430b2513bdf8d32a78c8e9e7e82a8
SHA1

ccc3cbbb8c1bb3573c5b78946c22d31e6294baa0
SHA256

933bd01ab3512f850693017a896355736f5d23bbb0707afa16e1c90a3785e710
SHA512

f92d509d7d8dec69a37ed81512dd5daf0d5e84dd8c72062a6babb91689c89bd4e3dc052ab28d664dd4f1b28a11952e84e60b6cf61d0849aa72dfded92648212c
SSDEEP

12288:/fBoOyTSwzSt/AIstOls/SWPE2AcYKtJHrNqvhEm:H0p+BZHWMtCJRD

Score

N/A

Malware Config

Signatures

Files

933bd01ab3512f850693017a896355736f5d23bbb0707afa16e1c90a3785e710
.exe windows x86

143e01bf693da9b146400aa4311960ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
lstrlenW
LeaveCriticalSection
DeleteFileA
GetTickCount
CloseHandle
CreateDirectoryW
GetCalendarInfoW
GetFileSize
VirtualProtectEx
RemoveDirectoryA
FindClose
GetLocalTime
EnterCriticalSection
GlobalFree
WriteConsoleW
GetModuleFileNameA
TlsGetValue
GetDriveTypeA
CreateFileA
Sleep
GetConsoleMode
GetCommandLineW
InitializeCriticalSection
GetStartupInfoA

user32

GetWindowLongA
IsWindow
wsprintfA
IsWindowVisible
DispatchMessageA
PeekMessageA
FillRect
IsWindowEnabled
EqualRect
GetWindowLongA
GetSysColor
MessageBoxA
GetWindowDC

cryptdlg

CertConfigureTrustW
CertConfigureTrustA
CertTrustCertPolicy
CertTrustCleanup

advapi32

IsValidSid

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 382KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy