9a0b75dd14192726868b36bec94af30659e7f56edb5a94ec0211668e0672da74 | Triage

Submit
Reports

Overview

overview

Static

static

9a0b75dd14...74.exe

windows7-x64

9a0b75dd14...74.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9a0b75dd14192726868b36bec94af30659e7f56edb5a94ec0211668e0672da74.exe

Resource

win7-20220812-en

xtremerat persistence rat spyware

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

9a0b75dd14192726868b36bec94af30659e7f56edb5a94ec0211668e0672da74.exe

Resource

win10v2004-20220812-en

xtremerat persistence rat spyware

windows10-2004-x64

10 signatures

150 seconds

General

Target

9a0b75dd14192726868b36bec94af30659e7f56edb5a94ec0211668e0672da74
Size

568KB
MD5

25e4604ad1befcfd562a254a4e4961ec
SHA1

4fbdb4bd7f043950e31e33669e31aa9334ed08e1
SHA256

9a0b75dd14192726868b36bec94af30659e7f56edb5a94ec0211668e0672da74
SHA512

50270f32b17f3550a498e80f32d586697541c59fad76478e0db78497b6f219bc078376d254bb5f5235fcd882a9c8e53fe7de8ce34cdde16ab94609b7ecbad9ce
SSDEEP

384:ug2JvTv+HdNpOFmagBRyRrhnbUQ3ZkDl7jdaVcrOF:uDJvKYFmabf5kDlMciF

Score

N/A

Malware Config

Signatures

Files

9a0b75dd14192726868b36bec94af30659e7f56edb5a94ec0211668e0672da74
.exe windows x86

34ef2d3cf91ce9c42fa6172a36b5aca9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord300
ord595
ord599
ord306
ord631
ord525
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord606
ord608
ProcCallEngine
ord644
ord537
ord572
ord100
ord616
ord581

Sections

.text
Size: 560KB - Virtual size: 559KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy