dac4179b64fd19e54e786ffe4dca5f74a4b4554f8231ab63b7e7d1effd4e8240 | Triage

Submit
Reports

Overview

overview

Static

static

dac4179b64...40.exe

windows7-x64

dac4179b64...40.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

dac4179b64fd19e54e786ffe4dca5f74a4b4554f8231ab63b7e7d1effd4e8240.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

dac4179b64fd19e54e786ffe4dca5f74a4b4554f8231ab63b7e7d1effd4e8240.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

dac4179b64fd19e54e786ffe4dca5f74a4b4554f8231ab63b7e7d1effd4e8240
Size

388KB
MD5

88a0a2a3f47ed7fd9228ce3d8c7c068c
SHA1

63fd91ab71d0913d31b20f8b45e1fa6154f433fb
SHA256

dac4179b64fd19e54e786ffe4dca5f74a4b4554f8231ab63b7e7d1effd4e8240
SHA512

4c295ba8a56aea15567406f3c039c84e596165170c9791d9ee877b70e98ff7d7f65acd762df4a1c41a7faa8dc2040244c985c206895f6e4022c1571ea8d73462
SSDEEP

6144:xqcUv1VkuUTy2oEKc47EQHiu728qI7rniREIlx9iyn9ui22aWaB2L44:JO8XyEKL7E1lWriREIlduipaS44

Score

N/A

Malware Config

Signatures

Files

dac4179b64fd19e54e786ffe4dca5f74a4b4554f8231ab63b7e7d1effd4e8240
.exe windows x86

822a4a70e4c30355ecd2f4e7358e5bac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateSemaphoreA
CreateDirectoryW
lstrlenA
GetStartupInfoA
VirtualProtectEx
WriteConsoleA
GetTickCount
LoadLibraryA
HeapSize
CloseHandle
SetEvent
SetLastError
GetFileAttributesA
DeleteFileW
CreateMutexA
Sleep
GetProcessHeap
CreateHardLinkW
GetLocalTime
SetLastError
GlobalFree

cryptui

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

w32topl

ToplEdgeCreate
ToplEdgeFree
ToplEdgeInit
ToplEdgeDestroy

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 380KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy