e156b339e2983861e7abcb7bb23d5c6d7e5dd46d6ea7f01709c744b981a0ade9 | Triage

Submit
Reports

Overview

overview

Static

static

e156b339e2...e9.exe

windows7-x64

e156b339e2...e9.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e156b339e2983861e7abcb7bb23d5c6d7e5dd46d6ea7f01709c744b981a0ade9.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e156b339e2983861e7abcb7bb23d5c6d7e5dd46d6ea7f01709c744b981a0ade9.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

e156b339e2983861e7abcb7bb23d5c6d7e5dd46d6ea7f01709c744b981a0ade9
Size

367KB
MD5

1a60add13fffdb876810ee74dd4444c1
SHA1

e9466d929c2d48e8c96bcdd00f3e34811ba0f3ce
SHA256

e156b339e2983861e7abcb7bb23d5c6d7e5dd46d6ea7f01709c744b981a0ade9
SHA512

d9eb6bf0bd2e5338846ec597a7d9fcad19b1ce7aa86a645b5f2239171ad1120331350e5c8655682273c20a25aac2d13f31ed2f3df887c3306d247f9a5ac38054
SSDEEP

6144:hRMchrVf/DRauRHlwrFYaN5ino7241GtMqzIXPH8CV+mybPzKP3zUeXm9+r:hRM6rpDneFNzino7IUHybPzQjUeX

Score

N/A

Malware Config

Signatures

Files

e156b339e2983861e7abcb7bb23d5c6d7e5dd46d6ea7f01709c744b981a0ade9
.exe windows x86

5748cd51a19909d75d20fcb3e770291b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoW
ReadFile
TlsGetValue
FindAtomW
FindClose
GetCurrentProcessId
HeapCreate
lstrlenW
GetDriveTypeW
GetConsoleAliasW
GetModuleFileNameA
GetCurrentThreadId
SetEvent
ResumeThread
GetNumberFormatW
SetLastError
EnterCriticalSection
LocalFree
GetModuleHandleA
GetPrivateProfileStringW

user32

DispatchMessageA
DrawTextA
DispatchMessageA
GetClassInfoA
GetClientRect
GetCursorInfo
SetFocus
CallWindowProcW
GetSysColor
IsWindow
GetKeyState
GetMenuInfo
GetKeyboardType

wsnmp32

SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 357KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy