a3394a6003883bd628e32a61a67a3f22b3ea37a893b3d1500596e977c3b57e7d | Triage

Submit
Reports

Overview

overview

Static

static

a3394a6003...7d.exe

windows7-x64

a3394a6003...7d.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a3394a6003883bd628e32a61a67a3f22b3ea37a893b3d1500596e977c3b57e7d.exe

Resource

win7-20220812-en

xtremerat persistence rat spyware upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a3394a6003883bd628e32a61a67a3f22b3ea37a893b3d1500596e977c3b57e7d.exe

Resource

win10v2004-20221111-en

xtremerat persistence rat spyware upx

windows10-2004-x64

8 signatures

150 seconds

General

Target

a3394a6003883bd628e32a61a67a3f22b3ea37a893b3d1500596e977c3b57e7d
Size

78KB
MD5

510a094e0bf585ef9149d8747a23e215
SHA1

9c66f96ddf62839afdd960962010d5ff92557ace
SHA256

a3394a6003883bd628e32a61a67a3f22b3ea37a893b3d1500596e977c3b57e7d
SHA512

4be27e033aa12ab29626a199ab591b823335f875a7a71d1fe890fe618ebcbeb666c2fb8ed217ae72b5a4af88e509464c1bcf2dc57fe873571d08a9e6758d16d7
SSDEEP

1536:Jag/DLWhS9CNDLJZUkGG2+v7JK6YZCs678OHYA9U1b2au:JaYWcoNDLJZUStK6YF67PWKau

Score

N/A

Malware Config

Signatures

Files

a3394a6003883bd628e32a61a67a3f22b3ea37a893b3d1500596e977c3b57e7d
.exe windows x86

9c8decf3582072f6edfc385a689f44f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateDirectoryA
CreateFileA
DeleteFileA
ExitProcess
FreeLibrary
GetCommandLineA
GetFileTime
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetTempPathA
GetWindowsDirectoryA
LoadLibraryA
lstrcatA
lstrcmpiA
RemoveDirectoryA
SetFileTime
VirtualAlloc
VirtualFree
WriteFile

Sections

.text
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy