cb2e63e4e391785a2abfad65c73253a2d3565497a2d63b6b6212e598e71fe206 | Triage

Submit
Reports

Overview

overview

Static

static

cb2e63e4e3...06.exe

windows7-x64

cb2e63e4e3...06.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

cb2e63e4e391785a2abfad65c73253a2d3565497a2d63b6b6212e598e71fe206.exe

Resource

win7-20220812-en

gozi_ifsb banker discovery persistence spyware stealer trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb2e63e4e391785a2abfad65c73253a2d3565497a2d63b6b6212e598e71fe206.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

cb2e63e4e391785a2abfad65c73253a2d3565497a2d63b6b6212e598e71fe206
Size

796KB
MD5

64e7f48820019432231ec5df21b77590
SHA1

ed896286dbb394c5852108d41ad724d0a7a15dd3
SHA256

cb2e63e4e391785a2abfad65c73253a2d3565497a2d63b6b6212e598e71fe206
SHA512

865b34b3c8e42cbd4f65d432ae097fa4ad02b986eb2516283a4699ae9b96a33a5e7eda6ed7342795b0c7756246bfed2e617e0f13518f50f4aaf63893b9b1effb
SSDEEP

12288:j3wSIi2wCHSvaecxFHe3SPheHmWtunTYLbfxWK/vxmWDC+1BEOmqT1D589zGiIXT:TXIjDyvVFipeHmHTIxWIzC5q5y9z7Io

Score

N/A

Malware Config

Signatures

Files

cb2e63e4e391785a2abfad65c73253a2d3565497a2d63b6b6212e598e71fe206
.exe windows x86

d1510acef464674c7feee4dc9f16d0da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
GetLocaleInfoA
RemoveDirectoryA
ResetEvent
GetStdHandle
WriteFile
CreatePipe
DeleteFileA
GetFileAttributesA
IsBadWritePtr
GetModuleHandleA
SetLastError
GetCommandLineA
ReadConsoleW
GetDriveTypeA
GetPriorityClass
SetLocalTime
CreateDirectoryA
ReleaseMutex
HeapSize
GetProcessHeap

user32

GetCapture
GetWindowLongW
PeekMessageA
DrawIcon
GetWindowTextW
DispatchMessageA
SetFocus
GetMessageW
DestroyMenu
SetCursor
wsprintfA
LoadCursorA
GetCaretPos

els

DllGetClassObject
DllRegisterServer
DllGetClassObject
DllRegisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy