f0011b9e5c4af8df4f92ca0349850e597545e8adeac0984f4a19364cbfca2a78 | Triage

Submit
Reports

Overview

overview

Static

static

f0011b9e5c...78.exe

windows7-x64

f0011b9e5c...78.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f0011b9e5c4af8df4f92ca0349850e597545e8adeac0984f4a19364cbfca2a78.exe

Resource

win7-20220812-en

cybergate vítima persistence stealer trojan upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

f0011b9e5c4af8df4f92ca0349850e597545e8adeac0984f4a19364cbfca2a78.exe

Resource

win10v2004-20220901-en

cybergate vítima persistence stealer trojan upx

windows10-2004-x64

12 signatures

150 seconds

General

Target

f0011b9e5c4af8df4f92ca0349850e597545e8adeac0984f4a19364cbfca2a78
Size

392KB
MD5

2aea55a5101b6f707888b4b8b4ebda18
SHA1

399385539783dc0d861c242b03d524d0a540cb2f
SHA256

f0011b9e5c4af8df4f92ca0349850e597545e8adeac0984f4a19364cbfca2a78
SHA512

fe2b58742236eddcc8b14186d5bbacc6ed98588bc55eb399ec2a5d32f287a7065a2d8de7f41448a483d26b7580be9c5d7a2d944100a0119c4bb41dd751b2abc3
SSDEEP

6144:ymt9iZlsj7LFd3aRQ5z722aIu78ZtpA6cyC70XK0+bjcsPMtjFRcg:ya0s77J5z08fpKrvbWv3

Score

N/A

Malware Config

Signatures

Files

f0011b9e5c4af8df4f92ca0349850e597545e8adeac0984f4a19364cbfca2a78
.exe windows x86

16483d77efd323bb499838c7c5ae6158

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CreateFileA
LoadLibraryA
LCMapStringA
ExitProcess
CloseHandle
GetCurrentProcess

user32

CreateWindowExA
SetWindowLongA
CharLowerBuffA
CloseWindow
wsprintfA

advapi32

RegEnumValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegQueryValueA
RegCloseKey

Sections

.text
Size: 370KB - Virtual size: 372KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy