2e974d0a6f4f02e64f75324444421775d0470ad22e9034e3b926801f9b92e434 | Triage

Submit
Reports

Overview

overview

Static

static

2e974d0a6f...34.exe

windows7-x64

2e974d0a6f...34.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2e974d0a6f4f02e64f75324444421775d0470ad22e9034e3b926801f9b92e434.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

2e974d0a6f4f02e64f75324444421775d0470ad22e9034e3b926801f9b92e434.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

2e974d0a6f4f02e64f75324444421775d0470ad22e9034e3b926801f9b92e434
Size

451KB
MD5

b8c4293bbf446ef50179d35cf66a4029
SHA1

d8ebf44057d9b9e9c65f9a86be61f62128097f49
SHA256

2e974d0a6f4f02e64f75324444421775d0470ad22e9034e3b926801f9b92e434
SHA512

d9990706505f3e3975f2205da86e9f03bec09644270d2b0fa29b09d477de2d8fd094a0b2a529733e4a903b6b79042f98659e6f169c88e0c7cb9070a8dfec9f8e
SSDEEP

12288:qFewdk//psFei2YAb2gtCHGNE2Qy1/yjzdqBbHCE7:qgXpsFj2YmomNv4qbiE7

Score

N/A

Malware Config

Signatures

Files

2e974d0a6f4f02e64f75324444421775d0470ad22e9034e3b926801f9b92e434
.exe windows x86

723dc44d1c8d1202c699a41ca42c356a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetFileType
HeapCreate
ExitThread
CreateSemaphoreA
VirtualQuery
WaitForMultipleObjects
GetProcessHeap
GetCurrentDirectoryW
GetModuleHandleA
GetDriveTypeA
FindClose
CancelIo
LocalSize
FindVolumeClose
WriteFile
FindVolumeClose
IsBadReadPtr
CloseHandle
lstrlenA
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateDirectoryA
GetFileTime

uxtheme

DrawThemeBackground
CloseThemeData
DrawThemeEdge
SetWindowTheme
CloseThemeData
GetThemeBool
OpenThemeData
GetThemeEnumValue
IsThemeActive
GetThemeTextExtent
GetThemeTextMetrics
GetWindowTheme
GetThemeColor

fmifs

Extend
Extend
Extend
Extend

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 443KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy