Static task
static1
Behavioral task
behavioral1
Sample
bCZe.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
bCZe.exe
Resource
win10v2004-20220414-en
General
-
Target
bCZe.exe
-
Size
14KB
-
MD5
352e1de7d7a5ab9896dd809e57e231b7
-
SHA1
ced36a4fb72fade359d0dea6585bc5f1d6dad9d5
-
SHA256
4af8536f98e03dfc5f5be911ff79ef6c0cbc8b942c855b0dcac530b3058f34b5
-
SHA512
8774fabb9917ac6ee00ff3136d061aed3918b078d03d43594fcfa8063af9bcb08c5b1464bc4e81aa50145b48483105c564e13ae7045a3153bd86482ab9d460b0
-
SSDEEP
192:N+8C+EKS0O9ejYTDG8bcp4LlXxOEmD7n9DtJEBkGxVXWkoNy8RJv:NNVjYTDG8gpuxOPfn9DnEnxRoNn
Malware Config
Extracted
revengerat
NyanCatRevenge
alice2019.myftp.biz:6000
3ad336abe5334ed5871
Signatures
-
Revengerat family
Files
-
bCZe.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 656B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ