c98e55edf924bec187b29845d0e073fee57df7c2905381e2cfaee3e47ca279d2 | Triage

Submit
Reports

Overview

overview

Static

static

c98e55edf9...d2.exe

windows7-x64

c98e55edf9...d2.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c98e55edf924bec187b29845d0e073fee57df7c2905381e2cfaee3e47ca279d2.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

c98e55edf924bec187b29845d0e073fee57df7c2905381e2cfaee3e47ca279d2.exe

Resource

win10v2004-20220812-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

c98e55edf924bec187b29845d0e073fee57df7c2905381e2cfaee3e47ca279d2
Size

451KB
MD5

e42f8ba6fa93edbdefdb6f3e9f899cb7
SHA1

7e28590ec77910922cd7ac824f4d2de5bac59fd1
SHA256

c98e55edf924bec187b29845d0e073fee57df7c2905381e2cfaee3e47ca279d2
SHA512

2a7f03cced52e74b9cebbfe1a639d69c4ee7b88cb9b8dba8053573ca1d0cfd19f67bfa5a784e6c7f24a65c11e71eb3a3035d153ecf1af9e56c5aa877f1270851
SSDEEP

12288:oWBC8vO0Kr7Y0fLddM+bQ/qFsgvvqBAss:RQ0y3M+b7bqB

Score

N/A

Malware Config

Signatures

Files

c98e55edf924bec187b29845d0e073fee57df7c2905381e2cfaee3e47ca279d2
.exe windows x86

ccb237a6e98a57a74fe28f33cfb92b0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
FindVolumeClose
CancelIo
GetFileType
LocalSize
lstrlenA
GetFileAttributesA
WriteFile
GetTickCount
HeapFree
CloseHandle
GetModuleHandleA
GetFileTime
FindVolumeClose
VirtualQuery
GetCommandLineA
GetModuleFileNameA
IsBadReadPtr
CreateSemaphoreA
GetCurrentDirectoryW
HeapCreate
WaitForMultipleObjects
GetDriveTypeA
FindClose
ExitThread

uxtheme

GetThemeColor
CloseThemeData
IsThemeActive
DrawThemeEdge
GetWindowTheme
CloseThemeData
GetThemeEnumValue
DrawThemeBackground
GetThemeTextMetrics
GetThemeBool
OpenThemeData
GetThemeTextExtent
SetWindowTheme

fltlib

FilterClose
FilterClose
FilterClose
FilterClose

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy