bc96b57a65868a4107e25d173e62987ed9bf12c040c2c8e92fd753f7ba3959b1 | Triage

Submit
Reports

Overview

overview

Static

static

Payment_PO.exe

windows7_x64

Payment_PO.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Payment_PO.exe

Resource

win7-20220414-en

hawkeye collection keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Payment_PO.exe

Resource

win10v2004-20220414-en

hawkeye collection keylogger spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

bc96b57a65868a4107e25d173e62987ed9bf12c040c2c8e92fd753f7ba3959b1
Size

439KB
MD5

9cf8918b1a43f1aa57314dc5e0b92774
SHA1

687c886922c426d3c58992b13d6ebb90742fde9a
SHA256

bc96b57a65868a4107e25d173e62987ed9bf12c040c2c8e92fd753f7ba3959b1
SHA512

80f92d16745b83919560fac5988b132bfc5dc28d7e062085d3353ddd96119fdfb5376d60a6d86b61753228d8243f296d511ce6f8db86cd814edb02e29fd036b2
SSDEEP

12288:rsZ7c9iRzlteJbKd6H1DFhaQuGJr0n906t:87cK/eKd6lFhaQhSt

Score

N/A

Malware Config

Signatures

Files

bc96b57a65868a4107e25d173e62987ed9bf12c040c2c8e92fd753f7ba3959b1
.zip
Payment_PO.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 586KB - Virtual size: 585KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy