8531d8bd4d2e243ce870975795779713918d5e8ff3f088ff6849186777afd0a8 | Triage

Submit
Reports

Overview

overview

Static

static

8531d8bd4d...a8.exe

windows7-x64

8531d8bd4d...a8.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8531d8bd4d2e243ce870975795779713918d5e8ff3f088ff6849186777afd0a8.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

8531d8bd4d2e243ce870975795779713918d5e8ff3f088ff6849186777afd0a8.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8531d8bd4d2e243ce870975795779713918d5e8ff3f088ff6849186777afd0a8
Size

510KB
MD5

cd5d8f678d56b98cd318192ff3606503
SHA1

1dff609bbd915ba3244ecd4ae2311a48c1cf2b76
SHA256

8531d8bd4d2e243ce870975795779713918d5e8ff3f088ff6849186777afd0a8
SHA512

d8a839b11659b1b5375be7878b8ce9a54523339a360f4fb2e8a3a40bde0d4421c8de5424cc7c753b9da5e8fd7aec6eba323fe1e25cd071e6ecfa08a1cbe94263
SSDEEP

12288:lqnVRAEbAqh9yyuvBY8crF8eDeLmRRB0EDq2:lqVRAEEqhwyuvBA6mBnDJ

Score

N/A

Malware Config

Signatures

Files

8531d8bd4d2e243ce870975795779713918d5e8ff3f088ff6849186777afd0a8
.exe windows x86

dd38c43d9183600e9918ed692de76059

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableA
CloseHandle
SuspendThread
FindVolumeClose
HeapDestroy
DeleteFileA
EnumResourceTypesW
WriteConsoleA
SetLastError
lstrlenA
GetCommandLineA
CreateSemaphoreA
CloseHandle
GlobalFlags
GetCommandLineA
FileTimeToSystemTime
HeapCreate
GetStartupInfoA
CreateEventW
GetModuleHandleA

advapi32

CloseEventLog
InitializeSid
IsValidAcl
RegDeleteValueA
IsValidSid
CreateServiceW
RegCreateKeyExW
IsValidSid
IsValidSid
RegEnumKeyA
ControlService
IsValidSid
IsValidSid

ddrawex

DllRegisterServer
DllRegisterServer
DllRegisterServer
DllRegisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 548KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 504KB - Virtual size: 503KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy