4b7f328bb05d97e371c0b7873e9a7eebad756971970948283c3bf6e46ac61103 | Triage

Submit
Reports

Overview

overview

Static

static

4b7f328bb0...03.exe

windows7_x64

4b7f328bb0...03.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4b7f328bb05d97e371c0b7873e9a7eebad756971970948283c3bf6e46ac61103.exe

Resource

win7-20220414-en

teslacrypt persistence ransomware spyware stealer suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4b7f328bb05d97e371c0b7873e9a7eebad756971970948283c3bf6e46ac61103.exe

Resource

win10v2004-20220414-en

teslacrypt persistence ransomware spyware stealer suricata

windows10-2004_x64

0 signatures

0 seconds

General

Target

4b7f328bb05d97e371c0b7873e9a7eebad756971970948283c3bf6e46ac61103
Size

360KB
MD5

0b7d136cbc2a52f4a836f99fa3fed5d5
SHA1

a8a501329c2d47c16dc7c31e18b667aafbbd3df1
SHA256

4b7f328bb05d97e371c0b7873e9a7eebad756971970948283c3bf6e46ac61103
SHA512

bc24815c309dc6530c82be0f5dbb2f92fb729b0f85cae3ee415b5e33f0938e16abc9a6e7216063dcc8b3661b3530655e27a00ed03168238988d2f1f25f10cf29
SSDEEP

6144:06qgoL9xGn4FfcPhe6szbYKMGFtOf7ipZz/aYIZC3FqTzELSyH5vuNAvwu:o9xGbKMAIf7i7vF3FqnEpvmAvB

Score

N/A

Malware Config

Signatures

Files

4b7f328bb05d97e371c0b7873e9a7eebad756971970948283c3bf6e46ac61103
.exe windows x86

e95e89bb8d979086ed0e3ea6408d6abf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

clusapi

GetClusterResourceKey

kernel32

GlobalMemoryStatus
CreateEventW

msvcrt

memcpy

user32

RemovePropA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

para
Size: 4KB - Virtual size: 812B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 783B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.erloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy