susp[.]exe | Triage

Submit
Reports

Overview

overview

1

Static

static

susp.exe

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

susp.exe

Resource

win10-20220812-en

windows10-1703-x64

0 signatures

150 seconds

General

Target

susp.exe
Size

437KB
MD5

c039f399ee1840b4c19309a3f2bc83aa
SHA1

d028183e9b61b78af56a6669b509da58b89b5ae4
SHA256

0496b9f97bf327a2aa59c2a16b1341dff74986d24aa3342fde80d03b44dc122e
SHA512

780309d5a874c141eef75f51e4c9de821be656e824d90eb0752a9467b1591443eefec059f22fa1c19d54fe2ac58ef6b3cfe2a763bff5b39f97d73ae60b94a2ac
SSDEEP

6144:HFyMa1PiCeu5rn+TaTPWQg4LLRrCgS6Cx161COVOPn1mG1hbtbkH2:HFoihQPWQg4L/Cx161tUPn1mG15dkH2

Score

N/A

Malware Config

Signatures

Files

susp.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy