Installer[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

Installer.exe

windows7_x64

Installer.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Installer.exe

Resource

win7-20220414-en

vidar 1281 discovery evasion spyware stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Installer.exe

Resource

win10v2004-20220414-en

vidar 1281 discovery evasion spyware stealer suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

Installer.exe
Size

7.3MB
MD5

f0f3dd8d6c79540592e7959f4acc185c
SHA1

c3ff30188af8f06ed8f1d759ae5308fe31bd26e3
SHA256

27c458a04be0086bfbb8c2a5e89e04e63ec7f0ad3b4f8c6efa1a19d00be70d14
SHA512

7d18d657df71a512e63bb4b0f6dc6a06f29965c2253409876a3be0dae76cc21021579d9fd3ad0d53afa46b4a1c4a66f5c9442ee85bde7890cfe3451dd1457351
SSDEEP

49152:IwjgUCrY6lHv55VPW682YPhyS64/i2eHFUhXGlUlCz:IwjgLrY6lHTyFbeFweUls

Score

N/A

Malware Config

Signatures

Files

Installer.exe
.exe windows x86

4945822a95098d6244a9b13e683d32f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW

user32

MessageBoxA

advapi32

RegQueryValueA

comctl32

ImageList_SetBkColor

Sections

.pdata
Size: - Virtual size: 5.2MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 430KB - Virtual size: 430KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.shared
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy