fb897e60e1996f61bfef9fbeaba73f94cdddb395e57e471b5f94828f552e55c9 | Triage

Submit
Reports

Overview

overview

Static

static

fb897e60e1...c9.exe

windows7-x64

fb897e60e1...c9.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

fb897e60e1996f61bfef9fbeaba73f94cdddb395e57e471b5f94828f552e55c9.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb897e60e1996f61bfef9fbeaba73f94cdddb395e57e471b5f94828f552e55c9.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fb897e60e1996f61bfef9fbeaba73f94cdddb395e57e471b5f94828f552e55c9
Size

487KB
MD5

7423309269ed2df9791e2989d08ab01c
SHA1

de59a16dd2f33c7d6943ad3d884c787d45e2428f
SHA256

fb897e60e1996f61bfef9fbeaba73f94cdddb395e57e471b5f94828f552e55c9
SHA512

b6c3b9dc2e9d5458fc27b12e2294aa190699e2912191f55cc1c17b99790a4f9215893226181d48dd1e33ff70d4fbe3ffa2d3b5bff2d5a8e09d0d1175258a4cda
SSDEEP

12288:eah3h34g9LZXQtCC35haiXUcohAkZiJP3vu1eZ:eU3qsdC3za0ohAkZiJ+1eZ

Score

N/A

Malware Config

Signatures

Files

fb897e60e1996f61bfef9fbeaba73f94cdddb395e57e471b5f94828f552e55c9
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 14.0MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 56B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy