87312f2b8882751c350dfa9097a8ce18ef9c36e886de3aa02190dbc055a3a93a | Triage

Submit
Reports

Overview

overview

Static

static

0RY9t35YcXOZNbf.exe

windows7_x64

0RY9t35YcXOZNbf.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

0RY9t35YcXOZNbf.exe

Resource

win7-20220414-en

nanocore keylogger persistence spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0RY9t35YcXOZNbf.exe

Resource

win10v2004-20220414-en

nanocore keylogger persistence spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

87312f2b8882751c350dfa9097a8ce18ef9c36e886de3aa02190dbc055a3a93a
Size

448KB
MD5

e662da929f3576c59f93e911d04689d3
SHA1

0429efab181b950bc90a03772a7d4d3e5f1cb406
SHA256

87312f2b8882751c350dfa9097a8ce18ef9c36e886de3aa02190dbc055a3a93a
SHA512

265d45ff57a9aa303e61fc049021537aadd53c03d5dce416a5423fb7990d3f8d8da1ee30c2e5ca261fbbec611b773ae4562909a423299b7cf1f09b0015e10b82
SSDEEP

12288:Alq5ZbYHKEiyPc/OnbBoyfaPJen/vJ27REUNHTxOiwWu:AlAbYH9k/Yo61n/vZ0HNOJ

Score

N/A

Malware Config

Signatures

Files

87312f2b8882751c350dfa9097a8ce18ef9c36e886de3aa02190dbc055a3a93a
.rar
0RY9t35YcXOZNbf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 559KB - Virtual size: 559KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy