fb79aeb0208d1ec90af8b18cfe0648bc69161f4d0e6091dea2ed7706b3ea21ec | Triage

Submit
Reports

Overview

overview

Static

static

fb79aeb020...ec.exe

windows7-x64

fb79aeb020...ec.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fb79aeb0208d1ec90af8b18cfe0648bc69161f4d0e6091dea2ed7706b3ea21ec.exe

Resource

win7-20221111-en

metasploit backdoor trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb79aeb0208d1ec90af8b18cfe0648bc69161f4d0e6091dea2ed7706b3ea21ec.exe

Resource

win10v2004-20221111-en

metasploit backdoor trojan

windows10-2004-x64

2 signatures

150 seconds

General

Target

fb79aeb0208d1ec90af8b18cfe0648bc69161f4d0e6091dea2ed7706b3ea21ec
Size

52KB
MD5

c8ab38fd12c94358fec5a4e0a2d18928
SHA1

af1cef54b587c01627a7b6144eb03b2c4768caa0
SHA256

fb79aeb0208d1ec90af8b18cfe0648bc69161f4d0e6091dea2ed7706b3ea21ec
SHA512

ec270269707e8975f0c654ea9b70d2bb31dcf2629884c28c4206f80ad5abf90b3ec3944975b0a4c4fc33e6489db8a4868f921b9259b9b076af22f22beb91bebb
SSDEEP

1536:pinDnRfyXH4REFei7c9CAMDH0dV9ZHupdfmXM:+aH4REeV9uYdLZHupeM

Score

N/A

Malware Config

Signatures

Files

fb79aeb0208d1ec90af8b18cfe0648bc69161f4d0e6091dea2ed7706b3ea21ec
.exe windows x86

90649435b308338fb80ce3b22561c27c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetViewportOrgEx
MoveToEx
AddFontResourceW
RealizePalette
CreateFontA
RectVisible
PatBlt
GetTextFaceW
Rectangle

user32

FrameRect
ClipCursor
InSendMessageEx
TileWindows
wsprintfA
SetForegroundWindow
GetWindowRect
GetSystemMenu
CheckRadioButton
HideCaret
GetWindowDC
CopyRect
UpdateWindow

kernel32

LCMapStringW
CreateDirectoryA
GlobalLock
lstrlenA
LCMapStringA
LocalReAlloc
CreateNamedPipeA
GetDateFormatA
FindResourceA
FindNextFileA
GlobalFlags
SetCurrentDirectoryW
FindResourceExA
GlobalUnlock

Exports

Exports

?akZepxTQs@@YGIG@Z
?szfzhjkF@@YGPAEPAEH@Z
?NzxXnZew@@YGXPAKI@Z
?FpzauUljGhaxOuwBmvO@@YGPAGPADM@Z
?ycMVAfyQAoFs@@YGIPAMF@Z

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy