fb082ba9622dc011d1c517f1e51e6686adf2f98cf7e69a5b2040366d098d51ec | Triage

Submit
Reports

Overview

overview

Static

static

fb082ba962...ec.exe

windows7-x64

fb082ba962...ec.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fb082ba9622dc011d1c517f1e51e6686adf2f98cf7e69a5b2040366d098d51ec.exe

Resource

win7-20221111-en

discovery evasion persistence trojan

windows7-x64

21 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb082ba9622dc011d1c517f1e51e6686adf2f98cf7e69a5b2040366d098d51ec.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

General

Target

fb082ba9622dc011d1c517f1e51e6686adf2f98cf7e69a5b2040366d098d51ec
Size

810KB
MD5

8e06c6d3bc31522a3e961906fda0a876
SHA1

33261ee19a131a8f6f21885522388834c56667e8
SHA256

fb082ba9622dc011d1c517f1e51e6686adf2f98cf7e69a5b2040366d098d51ec
SHA512

f808a4c1b6242e791bd3e78efb642c484d16bfb43fb4ca5bec083c7707ed97b091091e9d05d0c4c90c4527d886af6154c0cf0784cb5a0bb5fe47fbe6cf87fca0
SSDEEP

12288:AtKsUx1HhuRgsoavrE8efzFoqqapH2eb69aRsI5ET8WdKjAB8XuoAetiXJeKp7f:bIgsA8KJpDWLSuX0jAqXk4iX1

Score

N/A

Malware Config

Signatures

Files

fb082ba9622dc011d1c517f1e51e6686adf2f98cf7e69a5b2040366d098d51ec
.exe windows x86

db3cc049907a3836b1873a4e5743f39f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_wcsnicmp
rand
_initterm
iswspace
_wcsupr
_jn
_beginthreadex
_errno
_unlock
__dllonexit
_lock
_onexit
swscanf
memset
_vsnprintf
_CxxThrowException
towlower
?what@exception@@UBEPBDXZ
??0exception@@QAE@ABQBD@Z
toupper
iswctype
wcsrchr
memcpy

kernel32

GetProcessHeaps
CreateIoCompletionPort
GetQueuedCompletionStatus
PostQueuedCompletionStatus
TlsAlloc
TlsGetValue
TlsFree
TlsSetValue
HeapCreate
HeapSize
HeapValidate
HeapReAlloc
HeapDestroy
SwitchToThread
DeleteTimerQueueTimer
TryEnterCriticalSection
InitializeCriticalSection
LocalFileTimeToFileTime
SystemTimeToFileTime
CompareFileTime

gdiplus

GdipGetImageThumbnail
GdipCloneImage
GdipDrawImageRectI

Sections

.text
Size: 543KB - Virtual size: 543KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy