5666e10dc55e12c8b966eeb98ed88612b50028d0c8461f71d406235995be60fa | Triage

Submit
Reports

Overview

overview

Static

static

5666e10dc5...fa.exe

windows7-x64

5666e10dc5...fa.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5666e10dc55e12c8b966eeb98ed88612b50028d0c8461f71d406235995be60fa.exe

Resource

win7-20220812-en

evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

5666e10dc55e12c8b966eeb98ed88612b50028d0c8461f71d406235995be60fa.exe

Resource

win10v2004-20220812-en

evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

5666e10dc55e12c8b966eeb98ed88612b50028d0c8461f71d406235995be60fa
Size

434KB
MD5

41157c97d997eb924cadfc14faa6ee82
SHA1

4592032861c1fef790a92199621aea4388ce1b4f
SHA256

5666e10dc55e12c8b966eeb98ed88612b50028d0c8461f71d406235995be60fa
SHA512

b06f39e99aaa863bb929bf2f448f193c47509fbfc270414df815c6c63e6d58a2570df3afecd5aee787b0a90cddcf382c492ee0f156d9e0dcada7cceb9cb343e1
SSDEEP

12288:82/R6PiZLaoc+q40ZR6z3/VjzxPRshoQQ6emnnLA:82pPZLaClW4z3/V5uZQSn8

Score

N/A

Malware Config

Signatures

Files

5666e10dc55e12c8b966eeb98ed88612b50028d0c8461f71d406235995be60fa
.exe windows x86

90891799fcbc07717e411bd98590ce58

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
SetLastError
HeapCreate
GetModuleHandleA
CreateMutexW
GetTickCount
HeapSize
RemoveDirectoryW
DeleteFileA
GetTickCount
GetEnvironmentVariableW
Sleep
WaitForMultipleObjects
GetLocalTime
CreateFileA
FindClose
GetCurrentDirectoryA
ExitProcess
GetFileAttributesA
OpenProcess
GetStdHandle
WaitForSingleObject
GetStartupInfoW
CloseHandle
GetConsoleTitleW

user32

GetWindowLongA
DispatchMessageW
GetDC
FillRect
FindWindowW
DispatchMessageW
MessageBoxA
GetDC
PeekMessageA
GetClassInfoA
GetSysColor
GetDC
CallWindowProcW

vbajet32

VBAGetExprSrv
VBAGetExprSrv
VBAGetExprSrv
VBAGetExprSrv

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 624KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 428KB - Virtual size: 427KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy