d35c83f2f7832a3767f5f832f3d766672078ede10a5a8d816c820e0d4f393ad8 | Triage

Submit
Reports

Overview

overview

Static

static

d35c83f2f7...d8.exe

windows7-x64

d35c83f2f7...d8.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d35c83f2f7832a3767f5f832f3d766672078ede10a5a8d816c820e0d4f393ad8.exe

Resource

win7-20220901-en

metasploit backdoor trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d35c83f2f7832a3767f5f832f3d766672078ede10a5a8d816c820e0d4f393ad8.exe

Resource

win10v2004-20220901-en

metasploit backdoor trojan

windows10-2004-x64

2 signatures

150 seconds

General

Target

d35c83f2f7832a3767f5f832f3d766672078ede10a5a8d816c820e0d4f393ad8
Size

51KB
MD5

cd8c3c6437299fa30ecf5ce7d176128d
SHA1

4d4a61c936d0a52530a4c9296581ee28dd9fb52e
SHA256

d35c83f2f7832a3767f5f832f3d766672078ede10a5a8d816c820e0d4f393ad8
SHA512

a6c925184437d37a09b530c0fbee7f04078156fef9923811b514a2e7b49fe4c7f0b96a6c839f4b492014b84015b8bce2cabbf5b8c13b5f3021bd9cdcb241a597
SSDEEP

768:WuUXP9QNhesJLzAeSG17Z9IcZaD/BZlbhCwGkqCvo7zkvPJaUzyc5eUj+QNjS:W50eGLzAeJVZDQbB+CAXkvPfB3BS

Score

N/A

Malware Config

Signatures

Files

d35c83f2f7832a3767f5f832f3d766672078ede10a5a8d816c820e0d4f393ad8
.exe windows x86

0256c3bfdd143badeedeaf9b23b04aec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetStretchBltMode
CreateRoundRectRgn
GetObjectA
Ellipse
SetTextAlign
GetTextMetricsW
SetDIBitsToDevice
SetBitmapBits
CreateDIBitmap

user32

CreateDialogParamW
AppendMenuW
DestroyCaret
CopyImage
CreateIconIndirect
wsprintfA
ExitWindowsEx
GetMenuItemCount
LoadIconW
GetActiveWindow
SetWindowPlacement
SetActiveWindow
CreateMenu

shlwapi

PathAddBackslashA

kernel32

AddAtomW
lstrlenA
GetAtomNameA
GlobalDeleteAtom
IsValidLanguageGroup
CopyFileA
FindNextChangeNotification
GetTempPathA
DeleteFileW
FindFirstFileA
FormatMessageW
WaitCommEvent
FindClose
HeapAlloc

Exports

Exports

?hxLkvwfYeINtotziozsBq@@YGXPAJPAD@Z
?CcttfwpInPcvgvdePummtM@@YGPAENPAG@Z
?odkSdCzkinya@@YGPAMPAIJ@Z
?YvzGjyhzubYwI@@YGPAHGN@Z
?acEhoABXsQLitxy@@YGPAGPAMJ@Z
?cRggKtukfFCBTbjyxwxx@@YGMPAIE@Z

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy