e57820c08a2d90013bf6952f9ed3cbe3becbc44c48bca5858d5d46b715a83eee | Triage

Submit
Reports

Overview

overview

Static

static

e57820c08a...ee.exe

windows7-x64

e57820c08a...ee.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e57820c08a2d90013bf6952f9ed3cbe3becbc44c48bca5858d5d46b715a83eee.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

e57820c08a2d90013bf6952f9ed3cbe3becbc44c48bca5858d5d46b715a83eee.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

e57820c08a2d90013bf6952f9ed3cbe3becbc44c48bca5858d5d46b715a83eee
Size

536KB
MD5

aeab7e3ff1b96a62d5c9cac1fc091916
SHA1

996753c6f389d12a05f4124c6df090870f699950
SHA256

e57820c08a2d90013bf6952f9ed3cbe3becbc44c48bca5858d5d46b715a83eee
SHA512

60041486355d4db960bc24e62adc4ef23a297a2af991a0a03495e0432d49927fe0ddadca7bafa4a0543be1eb1ece662f7d6af2df683e9f81f068f53f102e8a0c
SSDEEP

12288:EM5f1yt0PM6l6DHXPBfJVOXaP/jPt00/3ZP8:EM5f1ytgBl6bFJVOXaDF00u

Score

N/A

Malware Config

Signatures

Files

e57820c08a2d90013bf6952f9ed3cbe3becbc44c48bca5858d5d46b715a83eee
.exe windows x86

736eae8110c46a8718d5a654d78c0609

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
DeviceIoControl
lstrlenA
GlobalSize
IsDebuggerPresent
Sleep
GetDriveTypeW
FindClose
DeleteFileA
CloseHandle
GetModuleFileNameW
GetStartupInfoA
GetCommandLineA
GetFileTime
CloseHandle
HeapCreate
GetModuleHandleA
GetConsoleTitleA
LocalFlags
CreateFileMappingW

user32

GetWindowLongW
DestroyMenu
CallWindowProcW
BeginPaint
DrawTextW
DestroyWindow
PeekMessageA
IsZoomed
LoadImageA
DispatchMessageA
FillRect
DispatchMessageA
IsWindow

dpwsockx

DPWS_GetEnumPort
DPWS_GetEnumPort
DPWS_GetEnumPort
DPWS_GetEnumPort

imagehlp

ImageUnload

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 529KB - Virtual size: 528KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy