Setup[.]zip | Triage

Submit
Reports

Overview

overview

8

Static

static

Setup.exe

windows7-x64

8

Setup.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

Setup.exe

Resource

win7-20220812-en

discovery spyware stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

Setup.exe

Resource

win10v2004-20220812-en

discovery spyware stealer

windows10-2004-x64

12 signatures

150 seconds

General

Target

Setup.zip
Size

4.6MB
MD5

c68607beade02ce9e61a95e4da7df9db
SHA1

7ad81a734710648bdead86ec90d1c1d1a2c9d25a
SHA256

402865f8361bf957d38069eecd06382e2e7237a882074c4080f9d172e281e245
SHA512

83e9b767d0cdf8ce3fb7a12060efedcfe51f17a56e29958f276610dc970407f7956d368163729194ad8bc6db22f37cf4831572072cc155f0fe85cc541fcae058
SSDEEP

98304:VmPP8dPwaTZLP4uUcZ87eObn31tBT1qrLb6LgKDts:VmPPhUPldKyObn7pouEv

Score

N/A

Malware Config

Signatures

Files

Setup.zip
.zip
Setup.exe
.exe windows x86

ddccc155b1fdc537a66884e418ebef90

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

memcpy

kernel32

LocalAlloc

user32

MessageBoxA

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 946B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.dvqqbs1
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wqxlsx3
Size: 876KB - Virtual size: 876KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wfxcaf0
Size: 700.0MB - Virtual size: 700.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy