d9ba65273cd9e8f4f3c4dcf601c652d153fe3fc54a0dd1135389574945128dd5 | Triage

Submit
Reports

Overview

overview

Static

static

PURCHASE.exe

windows7_x64

PURCHASE.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PURCHASE.exe

Resource

win7-20220414-en

masslogger collection rezer0 spyware stealer upx

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

PURCHASE.exe

Resource

win10v2004-20220414-en

masslogger collection spyware stealer upx

windows10-2004_x64

0 signatures

0 seconds

General

Target

d9ba65273cd9e8f4f3c4dcf601c652d153fe3fc54a0dd1135389574945128dd5
Size

2.2MB
MD5

a7bf11fb5f2ea3296cefdba78eeac0f3
SHA1

aac33b64c78f526a8848556669b4bae65a534a4a
SHA256

d9ba65273cd9e8f4f3c4dcf601c652d153fe3fc54a0dd1135389574945128dd5
SHA512

76e29ddbfad902ac7cab3249641a928ad61ce62ad1550ba95ff80d4ff7f9bf924ea27c6a511de1546d4fd39197fc4f507ceb2ddda3b4e11453146d49b3465aeb
SSDEEP

49152:c3XTTPU/LRnkP8fl8tfQcdCJkj3ULzmkr:cTTPU/pkkfitfHCJkj3UTr

Score

N/A

Malware Config

Signatures

Files

d9ba65273cd9e8f4f3c4dcf601c652d153fe3fc54a0dd1135389574945128dd5
.iso
PURCHASE.EXE
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

)2>OCc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy