8d400c2022af755bbbd781e064f7b147d9c6a98410e24c27f347f6470ba958f9 | Triage

Submit
Reports

Overview

overview

Static

static

8d400c2022...f9.exe

windows7-x64

8d400c2022...f9.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8d400c2022af755bbbd781e064f7b147d9c6a98410e24c27f347f6470ba958f9.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

8d400c2022af755bbbd781e064f7b147d9c6a98410e24c27f347f6470ba958f9.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8d400c2022af755bbbd781e064f7b147d9c6a98410e24c27f347f6470ba958f9
Size

367KB
MD5

c2510bfafba9033c38bed2d0b28b3844
SHA1

ce38f2f94611e9df970654a7b17d16fd6f87e366
SHA256

8d400c2022af755bbbd781e064f7b147d9c6a98410e24c27f347f6470ba958f9
SHA512

204e3b381338fd6ebdaad6c8d89eb493f2ddc6961c334870fed3bc5cf67765ca80b473caeb9bacaf692f31fbe599b88c16f34bc4ebd92a31ee76d189c01f45d7
SSDEEP

6144:ORMluhrVf/DRauRHlwrFYaN5ino7241GtMqzIXPH8CV+mybPzKP3zUeXm9+r:ORMqrpDneFNzino7IUHybPzQjUeX

Score

N/A

Malware Config

Signatures

Files

8d400c2022af755bbbd781e064f7b147d9c6a98410e24c27f347f6470ba958f9
.exe windows x86

051263ef7f64ffde386bf730036e7e9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
ResumeThread
ReadFile
SetLastError
TlsGetValue
GetNumberFormatW
FindClose
SetEvent
GetCurrentProcessId
GetConsoleAliasW
GetPrivateProfileStringW
GetModuleHandleA
GetCurrentThreadId
LocalFree
GetDriveTypeW
lstrlenW
HeapCreate
EnumCalendarInfoW
EnterCriticalSection
FindAtomW

user32

SetFocus
GetClientRect
GetKeyState
DispatchMessageA
GetMenuInfo
DispatchMessageA
GetCursorInfo
GetKeyboardType
GetClassInfoA
CallWindowProcW
DrawTextA
IsWindow
GetSysColor

wsnmp32

SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 357KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy