81c5de473f512c0b823301b3edc0bdeff96690a593e46bf8d53f9add7339d1de | Triage

Submit
Reports

Overview

overview

Static

static

81c5de473f...de.exe

windows7-x64

81c5de473f...de.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

81c5de473f512c0b823301b3edc0bdeff96690a593e46bf8d53f9add7339d1de.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

81c5de473f512c0b823301b3edc0bdeff96690a593e46bf8d53f9add7339d1de.exe

Resource

win10v2004-20221111-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

81c5de473f512c0b823301b3edc0bdeff96690a593e46bf8d53f9add7339d1de
Size

451KB
MD5

6e7b5ade8cc778934e75d6328767a7e0
SHA1

0d2368488687c60bf3c0be76c5a5e70ae7bd8ed0
SHA256

81c5de473f512c0b823301b3edc0bdeff96690a593e46bf8d53f9add7339d1de
SHA512

245ac03f65b30406353aabc9d8e1191313f48fdef3f6e03d09a666265db5113369203531f3f77913747ee88a3674e283d81a97ca9503a411a5bca2a5d8e1846c
SSDEEP

6144:9YQuOyXKA6P196JHZLLDoqPeGn7tJBMOuwgz0wW07MpezITXcntdxa8Wg2rikW:9YQu4A6r61doqPFuwJ0WXctXa80ri

Score

N/A

Malware Config

Signatures

Files

81c5de473f512c0b823301b3edc0bdeff96690a593e46bf8d53f9add7339d1de
.exe windows x86

e2fde6e635a98bcd61b4f183f23545c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
FindClose
GetModuleFileNameA
CloseHandle
CancelIo
SetFileAttributesW
FindVolumeClose
GetCommandLineA
LocalSize
WriteFile
EnterCriticalSection
HeapFree
FindVolumeClose
GetFileTime
GetCurrentDirectoryW
MapViewOfFile
GetModuleHandleA
GetCommandLineW
IsBadReadPtr
lstrlenA
GetDriveTypeA
WaitForMultipleObjects
HeapCreate
GetFileType
GetFileAttributesA

uxtheme

CloseThemeData
GetThemeTextMetrics
GetThemeColor
GetWindowTheme
GetThemeBool
IsThemeActive
OpenThemeData
GetThemeEnumValue
DrawThemeBackground
GetThemeTextExtent
SetWindowTheme
CloseThemeData
DrawThemeEdge

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy