dac5adf93122256dfbef7469bf0767b42331ddd72a3f72f2b958dc59e635d86c | Triage

Submit
Reports

Overview

overview

Static

static

dac5adf931...6c.exe

windows7-x64

dac5adf931...6c.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

dac5adf93122256dfbef7469bf0767b42331ddd72a3f72f2b958dc59e635d86c.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

dac5adf93122256dfbef7469bf0767b42331ddd72a3f72f2b958dc59e635d86c.exe

Resource

win10v2004-20220901-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

dac5adf93122256dfbef7469bf0767b42331ddd72a3f72f2b958dc59e635d86c
Size

434KB
MD5

f273c614631441c16b02dcddad6c82ff
SHA1

06e17270322ceef05000792667952118ded455ac
SHA256

dac5adf93122256dfbef7469bf0767b42331ddd72a3f72f2b958dc59e635d86c
SHA512

583afcf2b15fd643c956acd922d9697b4c389a1d37f4d0f69c4370d01dad3323fb5e4ceaee0b48fdf8f3d7c33f4ae614f042ffd133b7ac311edee8468de1922c
SSDEEP

12288:IMx2/R6PiZLaoc+q40ZR6z3/VjzxPRshoQQ6emnnLA:7x2pPZLaClW4z3/V5uZQSn8

Score

N/A

Malware Config

Signatures

Files

dac5adf93122256dfbef7469bf0767b42331ddd72a3f72f2b958dc59e635d86c
.exe windows x86

91450564d4aa52ac97bf67ca6337fff5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
WaitForSingleObject
HeapCreate
GetStartupInfoW
ExitProcess
GetTickCount
GetConsoleTitleW
GetEnvironmentVariableW
OpenProcess
GetCurrentDirectoryA
Sleep
CreateFileA
GetLocalTime
GetModuleHandleA
ReleaseMutex
RemoveDirectoryW
CloseHandle
SetLastError
CreateMutexW
FindClose
WaitForMultipleObjects
GetFileAttributesA
DeleteFileA
GetTickCount
HeapSize

user32

DispatchMessageW
GetClassInfoA
GetDC
FindWindowW
GetSysColor
PeekMessageA
CallWindowProcW
MessageBoxA
GetDC
DispatchMessageW
GetDC
GetWindowLongA
FillRect

vbajet32

VBAGetExprSrv
VBAGetExprSrv
VBAGetExprSrv
VBAGetExprSrv

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 624KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 428KB - Virtual size: 427KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy