e9e0fa3d9e1708fd50306b1c277a4f854ea1aaa5ce9999f7995e02cf12a950a5 | Triage

Submit
Reports

Overview

overview

Static

static

e9e0fa3d9e...a5.exe

windows7-x64

8

e9e0fa3d9e...a5.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e9e0fa3d9e1708fd50306b1c277a4f854ea1aaa5ce9999f7995e02cf12a950a5.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e9e0fa3d9e1708fd50306b1c277a4f854ea1aaa5ce9999f7995e02cf12a950a5.exe

Resource

win10v2004-20221111-en

metasploit backdoor trojan upx

windows10-2004-x64

12 signatures

150 seconds

General

Target

e9e0fa3d9e1708fd50306b1c277a4f854ea1aaa5ce9999f7995e02cf12a950a5
Size

138KB
MD5

0f266891125d0e4581de95f64b31d429
SHA1

61cc93249388c74a8879803a8923b9cb61e0df8d
SHA256

e9e0fa3d9e1708fd50306b1c277a4f854ea1aaa5ce9999f7995e02cf12a950a5
SHA512

8a3e1532da83ca80c51b292683e606bd5e62a262c7e41ecac7071637c3f4d1dc92960ae33c667fe62ea63d6602c619c5671b4dae50e1f5c6b1ad00e26533748a
SSDEEP

3072:IBXDYgAo12dmS7WYvMiPe2cZNedRKOxycw26cXa0RDozXgn:IFjZ12dt7WxiPe28Ne3jMcw2pXa0ezM

Score

N/A

Malware Config

Signatures

Files

e9e0fa3d9e1708fd50306b1c277a4f854ea1aaa5ce9999f7995e02cf12a950a5
.exe windows x86

ecfe2d063f4fd0931d3460afd678d9e1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveInPrepareHeader
waveInOpen
waveInGetNumDevs

msimg32

TransparentBlt

kernel32

GetStartupInfoA
GetModuleHandleA
SetErrorMode
VerLanguageNameA
CloseHandle
WriteConsoleA
ExitProcess
GetCommandLineA

user32

IsWindow
TrackPopupMenu
CreateWindowExA
GetWindowRect
CreateMenu
LoadMenuA
GetSysColor
DestroyIcon
UpdateWindow
DialogBoxParamA
InsertMenuA
SetWindowLongA

gdi32

SelectObject
GetObjectA
SetBkMode
TextOutA
DeleteObject
StretchBlt
RealizePalette
CreateCompatibleDC
SelectPalette

comdlg32

PrintDlgA

shell32

ShellExecuteA
SHGetFileInfoA

ole32

CoUninitialize
CoCreateInstance
CoInitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy