c8534a064fee1283d2319c186c503240169ec4001c540dd3d90d86c69d57c014 | Triage

Submit
Reports

Overview

overview

Static

static

MV Crystal...f..exe

windows7_x64

MV Crystal...f..exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

MV Crystal BAY_pdf..exe

Resource

win7-20220414-en

lokibot collection spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

MV Crystal BAY_pdf..exe

Resource

win10v2004-20220414-en

lokibot collection spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

c8534a064fee1283d2319c186c503240169ec4001c540dd3d90d86c69d57c014
Size

345KB
MD5

2d1c70611e9381a920612208f248dc94
SHA1

b9b7e3d645949f046f63c62a55892cb5a02ed88d
SHA256

c8534a064fee1283d2319c186c503240169ec4001c540dd3d90d86c69d57c014
SHA512

942ba4a0ebac7882663a098ed0e3ce97d79d121acb287822617adab13c02bccb266df8e8c7e0e7081d4ad965155ae7717d7a707968bbd677744feddf445fec63
SSDEEP

6144:97aKsjL+QkyZwp6RfpgKIptK5BbaNPR4eJ5c5pmp2FQF/Hw4Qt25Z1DihhZ3EKt9:pafwpGBOK5I1cuuo/HPQty2hoOQi

Score

N/A

Malware Config

Signatures

Files

c8534a064fee1283d2319c186c503240169ec4001c540dd3d90d86c69d57c014
.zip
MV Crystal BAY_pdf..exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 401KB - Virtual size: 401KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy