YRS1504720[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

YRS1504720.exe

windows7_x64

YRS1504720.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

YRS1504720.exe

Resource

win7-20220414-en

xloader ahc8 loader rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

YRS1504720.exe

Resource

win10v2004-20220414-en

xloader ahc8 loader rat

windows10-2004_x64

0 signatures

0 seconds

General

Target

YRS1504720.exe
Size

878KB
MD5

73aaabd4d5155a4ed6a37c6c33a21602
SHA1

ef08b0d3e5429b93c2496747c5163fc55044adbe
SHA256

b0689ba526627ae1cefce61dde4198b704f4ce53f898e1222f6ce40b73bd391c
SHA512

1732e3d6b606b99187f1f17d171f05ef99b808e111b752ccc9453c3d851ef187b7e7a61fb23905233f31c05f8146285deddcab5588502a5b6071af1a39938f14
SSDEEP

24576:S/BB3c/htMr+s8yxQsH3dQtQu3lDQH/Z:S5i/8qs1tpu1DQH/Z

Score

N/A

Malware Config

Signatures

Files

YRS1504720.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

EV/TA^_
Size: 779KB - Virtual size: 779KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy