6133875e0ce24ab73048a6217a4e88b48cb54300bd6d50ae8ec4e76ade5663fb | Triage

Submit
Reports

Overview

overview

Static

static

6133875e0c...fb.exe

windows7-x64

6133875e0c...fb.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6133875e0ce24ab73048a6217a4e88b48cb54300bd6d50ae8ec4e76ade5663fb.exe

Resource

win7-20221111-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

6133875e0ce24ab73048a6217a4e88b48cb54300bd6d50ae8ec4e76ade5663fb.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

6133875e0ce24ab73048a6217a4e88b48cb54300bd6d50ae8ec4e76ade5663fb
Size

453KB
MD5

b74fa637ea7a643022cb18624a02904a
SHA1

d36f020b0dbfb7d899980c7d77d107974f830287
SHA256

6133875e0ce24ab73048a6217a4e88b48cb54300bd6d50ae8ec4e76ade5663fb
SHA512

cd7e184ec732437da5992f5184a2addbeaef911e4af4938127ee72752375811bd6532ad3a9ab4568d8bedb4d4fe806eeb6a57e49591ee2873631ae63e0c3e8da
SSDEEP

12288:BwyB/0Mvlj+gzFgjVrZh6R65nR8Lv/nT9nU:Bwy50QzFgBzwmMv

Score

N/A

Malware Config

Signatures

Files

6133875e0ce24ab73048a6217a4e88b48cb54300bd6d50ae8ec4e76ade5663fb
.exe windows x86

6a8aa2bc09d884d9da9cca25bc983f58

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetVolumeLabelA
WaitForMultipleObjects
AddAtomA
HeapFree
FindClose
IsBadWritePtr
FindAtomA
DeleteAtom
ExitThread
CreateDirectoryA
GetModuleHandleA
HeapCreate
GetCommandLineA
SetEndOfFile
ClearCommBreak
RemoveDirectoryA
GetProcessHeap
CreatePipe
GetFileType
CreateSemaphoreW
WriteFile
GetModuleFileNameA
CloseHandle
GetDriveTypeW
RemoveDirectoryA

cryptui

CryptUIWizBuildCTL
CryptUIWizDigitalSign
CryptUIDlgViewContext
LocalEnroll
LocalEnrollNoDS
DllRegisterServer
CryptUIWizExport
WizardFree
CryptUIDlgFreeCAContext
CryptUIWizImport
WizardFree
CryptUIStartCertMgr
DllUnregisterServer

msvidc32

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy