5be93f4a49bd8054650b475b71397cd8feccc5d5e18e7ef22627e2f62233a230 | Triage

Submit
Reports

Overview

overview

Static

static

5be93f4a49...30.exe

windows7-x64

5be93f4a49...30.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5be93f4a49bd8054650b475b71397cd8feccc5d5e18e7ef22627e2f62233a230.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

5be93f4a49bd8054650b475b71397cd8feccc5d5e18e7ef22627e2f62233a230.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

5be93f4a49bd8054650b475b71397cd8feccc5d5e18e7ef22627e2f62233a230
Size

444KB
MD5

1c9b3cca2cb1f14dde2c715bbfc7f190
SHA1

037fbbe8a2f4b884619ab6096468359ca03b7f57
SHA256

5be93f4a49bd8054650b475b71397cd8feccc5d5e18e7ef22627e2f62233a230
SHA512

e2f7f94c321e5513bf8d65b9461d7ea38ab7b1e6fc12d9f2a6028cab6686474e515181f68d88062c9ccaf101c498a29fc07b7b6763be5cc40b40a55998be30b1
SSDEEP

12288:G7Fzq2c6/b2j7Pzu1nlPUfngo1vbSAuaTFA7E2W:tE/yj7LCl2uaJ0E2

Score

N/A

Malware Config

Signatures

Files

5be93f4a49bd8054650b475b71397cd8feccc5d5e18e7ef22627e2f62233a230
.exe windows x86

3fd5f553fe74e15ce73513234b68f154

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
CreateEventW
GetCommandLineA
GetConsoleTitleA
VirtualQuery
GetTimeFormatW
GlobalFlags
TlsGetValue
GetStartupInfoA
lstrlenA
GetEnvironmentVariableA
EnumResourceTypesA
GetModuleHandleA
HeapCreate
GetDriveTypeW
CloseHandle
HeapDestroy
CloseHandle
GetFileAttributesA
SetLastError

advapi32

RegEnumKeyA
IsValidSid
IsValidSid
IsValidSid
IsValidAcl
IsValidSid
IsValidSecurityDescriptor
CreateProcessAsUserA
IsValidSid
RegDeleteValueA
RegCreateKeyExW
InitializeSid
RegQueryValueW

asycfilt

FilterCreateInstance
FilterCreateInstance
FilterCreateInstance
FilterCreateInstance

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 612KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 438KB - Virtual size: 437KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy