31c9d8b7973f90769d41b9c8c9b7ce69b87c890384b6fbf2f27499b28096f274 | Triage

Submit
Reports

Overview

overview

Static

static

apphost.exe

windows7_x64

apphost.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

apphost.exe

Resource

win7-20220414-en

redline seks coreentity infostealer rezer0

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

apphost.exe

Resource

win10v2004-20220414-en

redline seks infostealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

31c9d8b7973f90769d41b9c8c9b7ce69b87c890384b6fbf2f27499b28096f274
Size

694KB
MD5

61072e959487ed7a6d8af3df000383a2
SHA1

bb0baf882a4b80cdad105b636a28dc665d30ef34
SHA256

31c9d8b7973f90769d41b9c8c9b7ce69b87c890384b6fbf2f27499b28096f274
SHA512

dea4156c984bdf2c841f1fab5ce64249f1690a9ed00dffe5e98bc1a8f2e85649bcabc3575f04413e25dea96872a8aee9273e1a38af59f1bbc35f6e2ebcf26e58
SSDEEP

12288:IOxfgs3o9YIEUp1s8vtO26nkgDH2cZhiWNC1QitO38kZNzvz7RIlYv+Xnpbc6:d5gslIE8eMsDwMiV15GLXRIk+Xn7

Score

N/A

Malware Config

Signatures

Files

31c9d8b7973f90769d41b9c8c9b7ce69b87c890384b6fbf2f27499b28096f274
.zip
apphost.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 501KB - Virtual size: 501KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 347KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy