1c28c6c17ed6dec4d1f08372b2dfb5efbe3342ab098d0f639e284cb3f77b98d1 | Triage

Submit
Reports

Overview

overview

Static

static

1c28c6c17e...d1.exe

windows7-x64

1c28c6c17e...d1.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1c28c6c17ed6dec4d1f08372b2dfb5efbe3342ab098d0f639e284cb3f77b98d1.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

1c28c6c17ed6dec4d1f08372b2dfb5efbe3342ab098d0f639e284cb3f77b98d1.exe

Resource

win10v2004-20220812-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

1c28c6c17ed6dec4d1f08372b2dfb5efbe3342ab098d0f639e284cb3f77b98d1
Size

453KB
MD5

7753de9cbc61c62407b70ac3e837152a
SHA1

ecc8f4126f8a869fd8974b43614b41e5b941358f
SHA256

1c28c6c17ed6dec4d1f08372b2dfb5efbe3342ab098d0f639e284cb3f77b98d1
SHA512

01eaee4c8e07cf4d13440fb8828d1a1e53d96fbe0914865fe8e228192b95f0076cae8439eea1f83c752b2aa938a2aeff613d7483068a114239d7116a8d80bdd4
SSDEEP

12288:/bA6ZD4b55K7gvvr4sE7l3XWEZLorcjks/3fl5JF67cOn7qp:/8v5w3zZ8rcksPf67cuq

Score

N/A

Malware Config

Signatures

Files

1c28c6c17ed6dec4d1f08372b2dfb5efbe3342ab098d0f639e284cb3f77b98d1
.exe windows x86

35bb02603a1c830d15354fb2f3896c8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalSize
SuspendThread
HeapFree
WaitForSingleObject
MapViewOfFile
GetFileTime
ReadFile
GetModuleHandleA
Sleep
GetEnvironmentVariableW
SetFileAttributesW
ExitProcess
GetCurrentDirectoryW
GetTickCount
CloseHandle
GetDriveTypeA
GetFileAttributesA
GetFileType
SetLastError
SetLastError
HeapCreate
GlobalLock
IsBadReadPtr
GetCommandLineW
EnterCriticalSection

uxtheme

GetThemeEnumValue
GetWindowTheme
DrawThemeBackground
OpenThemeData
SetWindowTheme
IsThemeActive
GetThemeColor
GetThemeTextExtent
GetThemeTextMetrics
CloseThemeData
CloseThemeData
GetThemeBool
DrawThemeEdge

credssp

SpVerifySignature
SpVerifySignature
SpVerifySignature
SpVerifySignature

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 445KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy