a8f6ff564cb33f340f0c30bf5ec70399774c546935e84f19d31256d9dfc68ef0 | Triage

Submit
Reports

Overview

overview

Static

static

a8f6ff564c...f0.exe

windows7-x64

a8f6ff564c...f0.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a8f6ff564cb33f340f0c30bf5ec70399774c546935e84f19d31256d9dfc68ef0.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

a8f6ff564cb33f340f0c30bf5ec70399774c546935e84f19d31256d9dfc68ef0.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a8f6ff564cb33f340f0c30bf5ec70399774c546935e84f19d31256d9dfc68ef0
Size

498KB
MD5

a8a8e33eb9f8d5786b2907f535dfdd94
SHA1

66033b64b0bb92d48a43d8fce029beb8311f1ea7
SHA256

a8f6ff564cb33f340f0c30bf5ec70399774c546935e84f19d31256d9dfc68ef0
SHA512

6cc48a969297152434c6cb5579bc0048e7732665fadef95e6977d92a148413fe84ea1219b51818ee519a6c62fb8706cf58472c69f56dacf4e8620933c03cfbaa
SSDEEP

6144:1hkPvy/KD5bVg05M/PZ+B+bHRJpEvlTZlG5KyLcRMCts+Yl8Zjkfj:kiCDVk/PI89J2tTANj+Yljb

Score

N/A

Malware Config

Signatures

Files

a8f6ff564cb33f340f0c30bf5ec70399774c546935e84f19d31256d9dfc68ef0
.exe windows x86

daddbbb893f58497cf4069c70d01e1e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeviceIoControl
HeapCreate
GetStartupInfoA
GetCommandLineA
DeleteFileA
TlsAlloc
CreateFileA
CreateFileMappingA
GetFileAttributesA
TlsGetValue
Sleep
GetModuleHandleA
PulseEvent
IsDebuggerPresent
IsBadStringPtrW
GetModuleFileNameW
lstrlenA
GetDriveTypeA
ReleaseMutex
SuspendThread

user32

DrawTextW
IsWindow
DispatchMessageA
CallWindowProcW
DispatchMessageA
PeekMessageA
DestroyWindow
IsZoomed
DestroyMenu
LoadImageA
GetIconInfo
FindWindowW
GetWindowLongA

cliconfg

OnInitDialogMain
OnInitDialogMain
OnInitDialogMain
OnInitDialogMain

cryptui

CryptUIDlgCertMgr

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 491KB - Virtual size: 490KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy