b8b4643c717579fa6291bb65ac9b7725b31386a22a3085dd561b887d5a31ac90 | Triage

Submit
Reports

Overview

overview

Static

static

b8b4643c71...90.exe

windows7-x64

b8b4643c71...90.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b8b4643c717579fa6291bb65ac9b7725b31386a22a3085dd561b887d5a31ac90.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

b8b4643c717579fa6291bb65ac9b7725b31386a22a3085dd561b887d5a31ac90.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

b8b4643c717579fa6291bb65ac9b7725b31386a22a3085dd561b887d5a31ac90
Size

372KB
MD5

4a2ea47d58912fb113cbd3f45f1b57ed
SHA1

06e9a4a590d93ee391b9e7dfc74fbc3a6f5f5800
SHA256

b8b4643c717579fa6291bb65ac9b7725b31386a22a3085dd561b887d5a31ac90
SHA512

2ff83057f808b9e31d7434d40c294ca84e66b84ea922b68f3260de90c6ab9425b30666dbe228b2abf054fcbb9b95fae1dc96477e17c80544090821b64056a3c8
SSDEEP

6144:CMrP+HMjvjVcVAC2FXgEr8fE0ASg3/YQvRNMVlJi41fv4Dw:CMSHMvjVkCrSvoZNyl5fwD

Score

N/A

Malware Config

Signatures

Files

b8b4643c717579fa6291bb65ac9b7725b31386a22a3085dd561b887d5a31ac90
.exe windows x86

7f5f1ef97db55bb59d9370cb330b091a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GlobalSize
GetComputerNameW
SetEvent
FreeConsole
VirtualAlloc
GlobalFree
GetDriveTypeA
ReleaseMutex
CreateFileW
FindVolumeClose
ExitThread
GetExitCodeProcess
ReadFile
GetModuleHandleW
LocalFree
CloseHandle
lstrlenA
GetPrivateProfileIntW
GetTickCount

user32

GetCursorInfo
DispatchMessageA
EndDialog
GetClassInfoA
GetMenu
CreateWindowExA
SetFocus
DrawStateW
GetSysColor
GetDlgItem
GetKeyState
CallWindowProcA
GetClientRect

clbcatq

ComPlusMigrate
ComPlusMigrate
DllGetClassObject
ComPlusMigrate
ComPlusMigrate

ntshrui

IsPathSharedA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy