6648k0[.]iso | Triage

Submit
Reports

Overview

overview

Static

static

DHL_014376...df.exe

windows7-x64

DHL_014376...df.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

DHL_014376 makbuz belgesi,pdf.exe

Resource

win7-20220901-en

nanocore evasion keylogger persistence spyware stealer trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

DHL_014376 makbuz belgesi,pdf.exe

Resource

win10v2004-20220812-en

nanocore evasion keylogger persistence spyware stealer trojan

windows10-2004-x64

12 signatures

150 seconds

General

Target

6648k0.iso
Size

1.2MB
MD5

49de13f9bf136caf37b5adde7b8ebf19
SHA1

4daf00d83b70b457a2b084dfab9d98c5ec3115bc
SHA256

66f881dd9bedd75bdc754e74be65acd9ddfe150a0436571b07d06944220bf109
SHA512

596b89bd28da84f057794a7e3bf49db58eba1d7574dce430fc028bbb195d5fee2393caf1305665597f10e670f614f36b0d681de22b272ae5296eccd7edc1f1c0
SSDEEP

24576:VfpVCjUByvd4GO/6jYug2ScatsxpOusjUmAqjL:VvCjU24GOCjpgdRsEl

Score

N/A

Malware Config

Signatures

Files

6648k0.iso
.iso
DHL_014376 makbuz belgesi,pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy