b89a14df1fe68514c58810ec421ff60168888b6971a1a46ff97d4474b925fd90 | Triage

Submit
Reports

Overview

overview

8

Static

static

b89a14df1f...90.exe

windows7-x64

8

b89a14df1f...90.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b89a14df1fe68514c58810ec421ff60168888b6971a1a46ff97d4474b925fd90.exe

Resource

win7-20220901-en

discovery persistence

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

b89a14df1fe68514c58810ec421ff60168888b6971a1a46ff97d4474b925fd90.exe

Resource

win10v2004-20220812-en

discovery persistence

windows10-2004-x64

8 signatures

150 seconds

General

Target

b89a14df1fe68514c58810ec421ff60168888b6971a1a46ff97d4474b925fd90
Size

204KB
MD5

896bee8216e0354b2dce57cbf95fdcae
SHA1

34bb0f59699b5a70c6e924a6128dbe8c4726fd33
SHA256

b89a14df1fe68514c58810ec421ff60168888b6971a1a46ff97d4474b925fd90
SHA512

e40efb01c47fa08a77985a8151bc75978e19a8a38f51ee12dcfdfd8a932b6920a97999bd1186c01405266d80fab718447d8edf18f649aeaa09e630ed3cfea427
SSDEEP

6144:bcdOSKq1G5JU09zZd6n0xWWq2oM3/wCeeR0AI01Ak:wwi8Ugz+NG/wQvI0

Score

N/A

Malware Config

Signatures

Files

b89a14df1fe68514c58810ec421ff60168888b6971a1a46ff97d4474b925fd90
.exe windows x86

e7dd6276b2fec5122520bdc652ea3162

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow

kernel32

FindResourceW

shlwapi

StrChrIW

Exports

Exports

LowerForY
?RevekFall@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y
?ServletKon@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.NEGO
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.NINE
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DEPO
Size: 512B - Virtual size: 349B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy