51190e0dc5495766f83213fd34009af5[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

51190e0dc5...f5.exe

windows7-x64

51190e0dc5...f5.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

51190e0dc5495766f83213fd34009af5.exe

Resource

win7-20220812-en

cryptbot discovery evasion spyware stealer themida trojan

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

51190e0dc5495766f83213fd34009af5.exe

Resource

win10v2004-20220812-en

cryptbot discovery evasion spyware stealer themida trojan

windows10-2004-x64

17 signatures

150 seconds

General

Target

51190e0dc5495766f83213fd34009af5.exe
Size

2.5MB
MD5

51190e0dc5495766f83213fd34009af5
SHA1

69d9b3995105cdfb7a86f3bbf9386ef214fb1290
SHA256

af0403b7c12d7b7fa9c487eb4a6e68705e9247abf7bc542f77168bd4ed3408fb
SHA512

fc5e535f3329e5042546b7f491a652152293bfeafedef2e06e0eba5706a16cc946c64f130d34879be6de6a740ae520fc65143910e29ab5bb3f48ffb63a8a5b28
SSDEEP

24576:YoqqcSy2wbUXoArd8SFErUYZ+uNrLFW5CPNWqo0N4IJpsqbMFGf0gAF0NPHyO034:CqcJdiq+WZdgGf6RuyVJi

Score

N/A

Malware Config

Signatures

Files

51190e0dc5495766f83213fd34009af5.exe
.exe windows x86

ddccc155b1fdc537a66884e418ebef90

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

memcpy

kernel32

LocalAlloc

user32

MessageBoxA

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 898B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy