dcca2b71be058054dd0b9393ab5b02a8ba569640fb96fe5d1629acccce179804 | Triage

Submit
Reports

Overview

overview

Static

static

MV NAHIDE-...LL.exe

windows7_x64

MV NAHIDE-...LL.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

MV NAHIDE-M EDPA REQUEST FOR SHIPYARD CALL.exe

Resource

win7-20220414-en

agenttesla collection keylogger persistence spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

MV NAHIDE-M EDPA REQUEST FOR SHIPYARD CALL.exe

Resource

win10v2004-20220414-en

agenttesla collection keylogger persistence spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

dcca2b71be058054dd0b9393ab5b02a8ba569640fb96fe5d1629acccce179804
Size

523KB
MD5

71f0fc17c747b38fbb90c843475bb97f
SHA1

8d921a1a8f687b0c405d273ddffc808529e1d8a3
SHA256

dcca2b71be058054dd0b9393ab5b02a8ba569640fb96fe5d1629acccce179804
SHA512

a285afb604eb0bac4201483affaad3b168c56dc1bb7f286906f63bc6fca8255e00aa958ad529aa780f51d92c47bf9c52b7fa749226bd399e0327312cd536bd84
SSDEEP

12288:MdIXLtsJQiXCQfsasy2Jp7AOByEkyIV51vvaDOh1qQp4NBAvm8oB6:S2AzS6sa32ko+9vaDObqU4NBAv3N

Score

N/A

Malware Config

Signatures

Files

dcca2b71be058054dd0b9393ab5b02a8ba569640fb96fe5d1629acccce179804
.rar
MV NAHIDE-M EDPA REQUEST FOR SHIPYARD CALL.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 507KB - Virtual size: 506KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy