82ae44756aaa60cebec4eb901dd95c49c23661ccda9e68c430fea476eb9cc7b5 | Triage

Submit
Reports

Overview

overview

Static

static

82ae44756a...b5.exe

windows7-x64

82ae44756a...b5.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

82ae44756aaa60cebec4eb901dd95c49c23661ccda9e68c430fea476eb9cc7b5.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

82ae44756aaa60cebec4eb901dd95c49c23661ccda9e68c430fea476eb9cc7b5.exe

Resource

win10v2004-20220812-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

82ae44756aaa60cebec4eb901dd95c49c23661ccda9e68c430fea476eb9cc7b5
Size

451KB
MD5

01715bb6150c9a0e2b48ff60b20a5f23
SHA1

8da6cfad552025e6029fba1d8007db861a7165ae
SHA256

82ae44756aaa60cebec4eb901dd95c49c23661ccda9e68c430fea476eb9cc7b5
SHA512

fc096a5572fcd033b4b240a13ba07a0edff34a229b9370b0820e654725946c2dc48874c9de2f830b8e422ed3cace77c2d6c9fe2c8460acdcb9d02daa4db2b13a
SSDEEP

6144:GZYTxyXKA6P196JHZLLDoqPeGn7tJBMOuwgz0wW07MpezITXcntdxa8Wg2rikW:GZYTPA6r61doqPFuwJ0WXctXa80ri

Score

N/A

Malware Config

Signatures

Files

82ae44756aaa60cebec4eb901dd95c49c23661ccda9e68c430fea476eb9cc7b5
.exe windows x86

49a6c0b565dcf66985cfcb1731f746cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetFileAttributesA
FindVolumeClose
WaitForMultipleObjects
CreateDirectoryA
HeapFree
CreateSemaphoreA
GetModuleFileNameA
CancelIo
GetFileType
GetTickCount
lstrlenA
WriteFile
LocalSize
FindClose
GetCommandLineA
GetModuleHandleA
GetFileTime
EnterCriticalSection
FindVolumeClose
IsBadReadPtr
GetDriveTypeA
ExitThread
GetCurrentDirectoryW
CloseHandle

uxtheme

GetThemeBool
GetThemeTextMetrics
GetThemeTextExtent
DrawThemeBackground
OpenThemeData
GetThemeColor
IsThemeActive
GetThemeEnumValue
CloseThemeData
DrawThemeEdge
SetWindowTheme
GetWindowTheme
CloseThemeData

drprov

NPGetCaps
NPGetCaps
NPGetCaps
NPGetCaps

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy