b50cf75301838be9aa28a3d35a014e732783f0a519fd5ebcb98422f811542ab0 | Triage

Submit
Reports

Overview

overview

Static

static

b50cf75301...b0.exe

windows7-x64

b50cf75301...b0.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b50cf75301838be9aa28a3d35a014e732783f0a519fd5ebcb98422f811542ab0.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

b50cf75301838be9aa28a3d35a014e732783f0a519fd5ebcb98422f811542ab0.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b50cf75301838be9aa28a3d35a014e732783f0a519fd5ebcb98422f811542ab0
Size

368KB
MD5

878957454e8bb57eaa288a4875912f86
SHA1

b0cab7b9e908690ecfabfe8b75626e2249139ed9
SHA256

b50cf75301838be9aa28a3d35a014e732783f0a519fd5ebcb98422f811542ab0
SHA512

b9546b4de5b6e319eb3b62ccce7072a7ab6770f392ae3737352d531165c1073fca421a070a18f6078f33d95a936b1de57576c64396d91cfcc66da795d5a52101
SSDEEP

6144:6RPnNHRM5hrVf/DRauRHlwrFYaN5ino7241GtMqzIXPH8CV+mybPzKP3zUeXm9+r:6FnNHRMXrpDneFNzino7IUHybPzQjUeX

Score

N/A

Malware Config

Signatures

Files

b50cf75301838be9aa28a3d35a014e732783f0a519fd5ebcb98422f811542ab0
.exe windows x86

6cc99074e27376f5fdbafd069cfc09e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasW
ResumeThread
GetDriveTypeW
GetNumberFormatW
GetModuleHandleA
FindAtomW
ReadFile
SetEvent
EnumCalendarInfoW
CreateEventW
SetLastError
FindClose
GetCurrentProcessId
EnterCriticalSection
HeapCreate
GetPrivateProfileStringA
GetCurrentThreadId
lstrlenW
TlsGetValue
LocalFree

user32

GetMenuInfo
SetFocus
GetCursorInfo
DispatchMessageA
DrawTextA
CallWindowProcW
DispatchMessageA
IsWindow
GetKeyState
GetSysColor
GetClassInfoA
GetKeyboardType
GetClientRect

unimdmat

UmCloseModem
UmCloseModem
UmCloseModem
UmCloseModem
UmCloseModem

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 358KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy