recordbreaker | 5d66919291b68ab8563deedf8d5575fd91460d1adfbd12dba292262a764a5c99 | Triage

Submit
Reports

Overview

overview

Static

static

5d66919291...99.exe

windows7_x64

5d66919291...99.exe

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5d66919291b68ab8563deedf8d5575fd91460d1adfbd12dba292262a764a5c99.exe

Resource

win7-20220414-en

recordbreaker discovery spyware stealer suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5d66919291b68ab8563deedf8d5575fd91460d1adfbd12dba292262a764a5c99.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

5d66919291b68ab8563deedf8d5575fd91460d1adfbd12dba292262a764a5c99
Size

55KB
MD5

9ea0905f02da6e6ef2e46d5e434ec2e9
SHA1

90acb6ca3f40b72a7ab601b2f781d43ddb5d2bb9
SHA256

5d66919291b68ab8563deedf8d5575fd91460d1adfbd12dba292262a764a5c99
SHA512

243bb29df27ee2d9f4a7974df83f2325ad0b6f1cdab3dd210eb253f0f804bc9a0b56fffacda60ddaac3eec07082d0ca421db6e41eca9cc8d90d91673a899d434
SSDEEP

1536:qzwshK8pUMGxo0xwwW9VemFMGfpbbVDqANyCa:wwshK8yMexbW9vJVDqANs

Score

10^/10

recordbreaker

Malware Config

Extracted

Family

recordbreaker

C2

http://178.128.94.180

Signatures

Recordbreaker family
recordbreaker

Files

5d66919291b68ab8563deedf8d5575fd91460d1adfbd12dba292262a764a5c99
.exe windows x86

4ec5227a81c3e90d891321c143c67557

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
GetUserDefaultLCID
GetSystemInfo
LocalFree
FreeLibrary
GetProcAddress
LoadLibraryW

advapi32

GetUserNameW

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy