74660053e6a23e59fd32f395c0c73732a1c22297ecafc6915a393f4179195734 | Triage

Submit
Reports

Overview

overview

Static

static

74660053e6...34.exe

windows7-x64

74660053e6...34.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

74660053e6a23e59fd32f395c0c73732a1c22297ecafc6915a393f4179195734.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

74660053e6a23e59fd32f395c0c73732a1c22297ecafc6915a393f4179195734.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

74660053e6a23e59fd32f395c0c73732a1c22297ecafc6915a393f4179195734
Size

337KB
MD5

3c803b6fb4ebe372d281512778642a37
SHA1

7b3152f320dc18cd1ba8d40ca3eda28051e9f456
SHA256

74660053e6a23e59fd32f395c0c73732a1c22297ecafc6915a393f4179195734
SHA512

7394eacb28ea4ea21b6f0ac36b6c180ea4ed44285bfbb5e677af44b30af6ba6c42f62d9a67de657a148bee51013235b95b2dc52a90b3fb48032b9cfb768cb120
SSDEEP

6144:exhk7p4oiM3rk9dnyyw4D4dTV8c444ZIJhSvOJxc57vHhfhUSJ:e3k7p1rAw4DG8cVhSvOiNhUS

Score

N/A

Malware Config

Signatures

Files

74660053e6a23e59fd32f395c0c73732a1c22297ecafc6915a393f4179195734
.exe windows x86

e85b001a71fed41e2f07fd3faa338b35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
CloseHandle
GetComputerNameA
LoadLibraryA
SetEvent
GetSystemTime
CreateFileA
GetCommandLineA
SetLastError
FindAtomA
ReleaseMutex
lstrcpyA
CreateThread
GetDiskFreeSpaceW
GetTickCount
GetDriveTypeW
GetFileAttributesA
HeapCreate
LocalFree
LoadLibraryW

user32

FillRect
CloseWindow
DestroyCaret
GetClipCursor
DrawStateA
GetDlgItem
GetKeyState
GetClassInfoA
GetComboBoxInfo
CallWindowProcA
SetFocus
CreateWindowExA
DispatchMessageA

cryptnet

CryptGetObjectUrl
CryptUninstallCancelRetrieval
CertDllVerifyCTLUsage
CryptCancelAsyncRetrieval
CryptGetTimeValidObject

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy