3d3664e9175912b6bca3ab053110c08663bb6b038365f34a09a7320136232c0b | Triage

Submit
Reports

Overview

overview

Static

static

3d3664e917...0b.exe

windows7-x64

3d3664e917...0b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3d3664e9175912b6bca3ab053110c08663bb6b038365f34a09a7320136232c0b.exe

Resource

win7-20220812-en

cybergate remote persistence stealer trojan upx

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

3d3664e9175912b6bca3ab053110c08663bb6b038365f34a09a7320136232c0b.exe

Resource

win10v2004-20220812-en

cybergate remote persistence stealer trojan upx

windows10-2004-x64

17 signatures

150 seconds

General

Target

3d3664e9175912b6bca3ab053110c08663bb6b038365f34a09a7320136232c0b
Size

598KB
MD5

75c8bae52d49c0db1512eb0ad03aa19e
SHA1

da94c41d38dff43fc8c33599ef5b07574287f1b8
SHA256

3d3664e9175912b6bca3ab053110c08663bb6b038365f34a09a7320136232c0b
SHA512

5214a7507d7a98f022a885d6d8aeaa29ae849a74bee663e73d72940f02766a36c6adbfde6219272bb714ebf00980127af11ee0c26df53b225808b846703b6540
SSDEEP

6144:I8dSgcClX8aEmErEMZORX0l2rCtLE6g/bzxVnVw4IxTVk3U8C6vYsHlgY6UDa6Qq:IPOQ3EiyX0/tLLgjzzyT8o6kw0M

Score

N/A

Malware Config

Signatures

Files

3d3664e9175912b6bca3ab053110c08663bb6b038365f34a09a7320136232c0b
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

21:01:76:e5:da:90:cf:af:41:48:34:cf:a4:27:36:10
Certificate

Issuer

CN=SKYPE\\Ben

Not Before

03/01/2014, 02:20

Not After

03/01/2015, 08:20

Subject

CN=SKYPE\\Ben

7e:54:cc:c3:75:ce:ce:0c:f2:4a:6b:ac:ed:db:7c:1b:ba:b2:ce:02
Signer

Actual PE Digest

7e:54:cc:c3:75:ce:ce:0c:f2:4a:6b:ac:ed:db:7c:1b:ba:b2:ce:02

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=SKYPE\\Ben

29/09/2022, 18:52
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 530KB - Virtual size: 530KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy