ca4b3d1718a2b0bf7078beab2a14907e3e03d1121157a7e9eb552aecc768e251 | Triage

Submit
Reports

Overview

overview

Static

static

ca4b3d1718...51.exe

windows7-x64

ca4b3d1718...51.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ca4b3d1718a2b0bf7078beab2a14907e3e03d1121157a7e9eb552aecc768e251.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca4b3d1718a2b0bf7078beab2a14907e3e03d1121157a7e9eb552aecc768e251.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ca4b3d1718a2b0bf7078beab2a14907e3e03d1121157a7e9eb552aecc768e251
Size

372KB
MD5

66673c48efda719a783a5b3821bb044b
SHA1

13b18dd879484e5ae9e47f781544f0159995e0b3
SHA256

ca4b3d1718a2b0bf7078beab2a14907e3e03d1121157a7e9eb552aecc768e251
SHA512

482419c6b7cf25ec63e6ed5d349a2d98af2e0609026d7c11d4e6bb76487712626388eb13f8310fc7b2eaa13349931b1bcacde392fb4aae3854469f9aef9364c6
SSDEEP

6144:+jjvjVcVAC2FXgEr8fE0ASg3/YQvRNMVlJi41fv4Dw:+nvjVkCrSvoZNyl5fwD

Score

N/A

Malware Config

Signatures

Files

ca4b3d1718a2b0bf7078beab2a14907e3e03d1121157a7e9eb552aecc768e251
.exe windows x86

be6394ae6a776e67ad73fb197903efce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetModuleHandleW
GlobalSize
ReleaseMutex
SetEvent
GetPrivateProfileIntW
GlobalFree
ExitThread
CreateFileW
GetTickCount
FindVolumeClose
GetDriveTypeA
GetExitCodeProcess
LocalFree
VirtualAlloc
ReadFile
CloseHandle
lstrlenA
FreeConsole
GetComputerNameW

user32

GetDlgItem
DispatchMessageA
GetKeyState
GetSysColor
GetMenu
EndDialog
CallWindowProcA
SetFocus
GetCursorInfo
GetClassInfoA
DrawStateW
CreateWindowExA
GetClientRect

clbcatq

ComPlusMigrate
ComPlusMigrate
ComPlusMigrate
ComPlusMigrate
DllGetClassObject

ntshrui

IsPathSharedA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy