40c8a4569b9d9f6b4c3f56c0fd4f83012189d6c05110083f66daea5005413804 | Triage

Submit
Reports

Overview

overview

Static

static

40c8a4569b...04.exe

windows7-x64

40c8a4569b...04.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

40c8a4569b9d9f6b4c3f56c0fd4f83012189d6c05110083f66daea5005413804.exe

Resource

win7-20221111-en

sality backdoor evasion trojan upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

40c8a4569b9d9f6b4c3f56c0fd4f83012189d6c05110083f66daea5005413804.exe

Resource

win10v2004-20221111-en

sality backdoor evasion trojan upx

windows10-2004-x64

14 signatures

150 seconds

General

Target

40c8a4569b9d9f6b4c3f56c0fd4f83012189d6c05110083f66daea5005413804
Size

140KB
MD5

a588292308328b5530e4341a1f0d57e0
SHA1

ab9f887cbb5fcd5254235ea5314ac59f3791d38b
SHA256

40c8a4569b9d9f6b4c3f56c0fd4f83012189d6c05110083f66daea5005413804
SHA512

a14f991861723eccf8c2d15d0a250790df497ec6b47d76f0bc6c41f79264a2fcb69c33221ed75e8b833c19be9b46d2f5ee96b5d35ef8758c00269d129ddf9422
SSDEEP

1536:zuCoaMKsO6ZXFcP2SlIsP6Ji92kRwXhuJTkWaMM+btNo66TSOfipFFkGZNGrXnIL:CCAKz6S7xyJy4MVlMVp7KTqDFz0XL

Score

N/A

Malware Config

Signatures

Files

40c8a4569b9d9f6b4c3f56c0fd4f83012189d6c05110083f66daea5005413804
.exe windows x86

4bbaef4b7739d33c77d05df9e1db675d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetModuleFileNameA
CloseHandle
ReadFile
SetFilePointer
CreateFileA
GlobalAlloc
lstrlenA
MultiByteToWideChar
GetUserDefaultLCID
GetModuleHandleA
GetStartupInfoA

user32

wsprintfA
MessageBoxA

msvcrt

__p__fmode
free
malloc
strlen
strcpy
_exit
_XcptFilter
exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
_acmdln
__set_app_type
_except_handler3
_controlfp

oleaut32

SysAllocString

ole32

CoCreateInstance
CLSIDFromProgID
OleInitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy