file | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

5

file.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20220812-en

privateloader discovery loader spyware stealer

windows10-2004-x64

9 signatures

150 seconds

General

Target

file
Size

386KB
MD5

2cacbcd2cc6cbaac2ab0270f5e341d50
SHA1

da3aea62ddf57c895acf630b62e972ef70defb60
SHA256

a3694a1695f21ff234a62d22c6d98dd4f5a7fd3e0edb25b0830d40612196e922
SHA512

6eef2ee4b169b14dbe5ee794556e82382e305dae1890b7b8e0acaaf44e17446def261fee1f86deeabccc77fc58577c4ab08bdba567f6ca651ec2c6348b811489
SSDEEP

12288:edXL4sFzfWs/Dtr6oYcxh2MdRog6EQpbief:E4IW0pr6cX2sojJief

Score

N/A

Malware Config

Signatures

Files

file
.exe windows x86

e8e0e0d3730051f4600d33ed55970e77

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

ShowWindow

advapi32

RegOpenKeyExA

comctl32

CreateStatusWindowA

Sections

Size: - Virtual size: 168KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 480B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy