f65e2dbbc8e81378ad58cef8cfd831dd0ae44be6333bdaf6a84b6f7136338729 | Triage

Submit
Reports

Overview

overview

Static

static

1

winprofile

windows7-x64

winprofile

windows10-1703-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f65e2dbbc8e81378ad58cef8cfd831dd0ae44be6333bdaf6a84b6f7136338729.exe

Resource

win7-20230220-en

systembc persistence trojan

windows7-x64

4 signatures

300 seconds

Behavioral task

behavioral2

Sample

f65e2dbbc8e81378ad58cef8cfd831dd0ae44be6333bdaf6a84b6f7136338729.exe

Resource

win10-20230220-en

systembc persistence trojan

windows10-1703-x64

4 signatures

300 seconds

General

Target

f65e2dbbc8e81378ad58cef8cfd831dd0ae44be6333bdaf6a84b6f7136338729
Size

6.6MB
MD5

d086940618bcc604f2d17c141f47ae49
SHA1

0efa810ab7e78a1ddf00cd3d2abd43b9be2eb837
SHA256

f65e2dbbc8e81378ad58cef8cfd831dd0ae44be6333bdaf6a84b6f7136338729
SHA512

9e4e02bb56580bb55a208f68204860fe64617537b4450cc5b513c14cacec17ca80a58f432a98c4a9bf2d38014c4826e6e17a5cf919638ac2e4bc823507af2e04
SSDEEP

196608:O3mUa51xxehaJ9a1m2asYgqnsKmQUcuJOkoDCNztN:O233xxEaLOYnsKmxQpE3

Score

1^/10

Malware Config

Signatures

Files

f65e2dbbc8e81378ad58cef8cfd831dd0ae44be6333bdaf6a84b6f7136338729
.exe windows x86

4770e251fca62299755b46f1b56c5865

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
CharUpperBuffW

kernel32

GetCommandLineA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

advapi32

RegSetValueExA

wsock32

WSAStartup

ws2_32

freeaddrinfo

secur32

GetUserNameExA

Sections

.text
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 316B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rAM
Size: - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.{hU
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.;LF
Size: 6.2MB - Virtual size: 6.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 453KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy