7ddb758c1d128bd3aaf4cb429f72e6055fd6af2d4c1157a895204cea2a275256 | Triage

Submit
Reports

Overview

overview

Static

static

7ddb758c1d...56.exe

windows7-x64

7ddb758c1d...56.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

7ddb758c1d128bd3aaf4cb429f72e6055fd6af2d4c1157a895204cea2a275256.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

7ddb758c1d128bd3aaf4cb429f72e6055fd6af2d4c1157a895204cea2a275256.exe

Resource

win10v2004-20221111-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

7ddb758c1d128bd3aaf4cb429f72e6055fd6af2d4c1157a895204cea2a275256
Size

451KB
MD5

b8166d476ef7cba9556e1eaa090b59a3
SHA1

ae2484120376e2a4c7a05cbabee6093881a316d7
SHA256

7ddb758c1d128bd3aaf4cb429f72e6055fd6af2d4c1157a895204cea2a275256
SHA512

397693b583e4333a0140804da592c83d362a0f9d1280e88fac6640864ef12efe618d38100058f940164ef831ed467f405e4d8d5fff88baf537d84f2b5f6e031b
SSDEEP

6144:joh8j0IDyXKA6P196JHZLLDoqPeGn7tJBMOuwgz0wW07MpezITXcntdxa8Wg2riv:MhIxA6r61doqPFuwJ0WXctXa80ri

Score

N/A

Malware Config

Signatures

Files

7ddb758c1d128bd3aaf4cb429f72e6055fd6af2d4c1157a895204cea2a275256
.exe windows x86

8a5e2bb56b9b8e61a9727143b7cd7467

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
HeapFree
GetFileAttributesA
FindVolumeClose
WaitForMultipleObjects
GetModuleFileNameA
EnterCriticalSection
IsBadReadPtr
GetCurrentDirectoryW
CancelIo
GetCommandLineW
LocalSize
GetModuleHandleA
CloseHandle
SetFileAttributesW
GetFileTime
ExitThread
GetFileType
HeapCreate
WriteFile
FindVolumeClose
FindClose
MapViewOfFile
lstrlenA
GetDriveTypeA

uxtheme

DrawThemeEdge
GetThemeBool
CloseThemeData
GetWindowTheme
GetThemeEnumValue
GetThemeTextMetrics
GetThemeColor
IsThemeActive
SetWindowTheme
GetThemeTextExtent
DrawThemeBackground
CloseThemeData
OpenThemeData

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy