f819913442122f682c63164ffcb8b5d741a8fae76423e9323930056ac53191d4 | Triage

Submit
Reports

Overview

overview

Static

static

f819913442...d4.exe

windows7-x64

f819913442...d4.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f819913442122f682c63164ffcb8b5d741a8fae76423e9323930056ac53191d4.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

f819913442122f682c63164ffcb8b5d741a8fae76423e9323930056ac53191d4.exe

Resource

win10v2004-20220812-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

f819913442122f682c63164ffcb8b5d741a8fae76423e9323930056ac53191d4
Size

453KB
MD5

f1226b570524c4d5c72bf37fda02d2fa
SHA1

a9a134cc305e44ffc269e6ddaca4bda232de8201
SHA256

f819913442122f682c63164ffcb8b5d741a8fae76423e9323930056ac53191d4
SHA512

c46ba143b3bf7c0c699d2d58f782bd9f7a0a4e470b6907cd1f51d7b87177acd980ebb990fa45bbfba4cf16273eb0184bac54e5c33425a4b521517f22da9a7ae3
SSDEEP

12288:V3KZD4b55K7gvvr4sE7l3XWEZLorcjks/3fl5JF67cOn7qp:V3f5w3zZ8rcksPf67cuq

Score

N/A

Malware Config

Signatures

Files

f819913442122f682c63164ffcb8b5d741a8fae76423e9323930056ac53191d4
.exe windows x86

809a6182b7f9ea138a1832af7f87bc8b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
GetFileType
GetCurrentDirectoryW
GetCommandLineW
IsBadReadPtr
HeapCreate
GetFileAttributesA
ExitProcess
HeapFree
GetDriveTypeA
GetTickCount
WaitForSingleObject
GlobalLock
SuspendThread
GetFileTime
SetFileAttributesW
Sleep
CloseHandle
LocalSize
SetLastError
MapViewOfFile
ReadFile
EnterCriticalSection
SetLastError
GetModuleHandleA

uxtheme

IsThemeActive
GetThemeEnumValue
GetThemeColor
GetWindowTheme
GetThemeTextMetrics
OpenThemeData
SetWindowTheme
DrawThemeBackground
GetThemeTextExtent
CloseThemeData
DrawThemeEdge
GetThemeBool
CloseThemeData

dbnmpntw

ConnectionVer
ConnectionVer
ConnectionVer
ConnectionVer

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 445KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy