ab760b8eaf06ac39da13ec7cd8f9677d696f360e11f7e593696b991e483660cb | Triage

Submit
Reports

Overview

overview

Static

static

Photo-108-145.jpg.scr

windows7-x64

Photo-108-145.jpg.scr

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Photo-108-145.jpg.scr

Resource

win7-20220812-en

phorphiex loader trojan worm

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

Photo-108-145.jpg.scr

Resource

win10v2004-20220812-en

phorphiex loader trojan worm

windows10-2004-x64

1 signatures

150 seconds

General

Target

ab760b8eaf06ac39da13ec7cd8f9677d696f360e11f7e593696b991e483660cb
Size

15KB
MD5

9abf3f65e1ed8f71faf4081f82850605
SHA1

9233881d69cb173a48a8c21a2d7fadb629924c62
SHA256

ab760b8eaf06ac39da13ec7cd8f9677d696f360e11f7e593696b991e483660cb
SHA512

fbd1817c8a38f3f3cf33fa6d909b16f018a4ac3ac8c77fc75c4587f491030c15c8ec3615140a8ffdc89c2a8d10445a0774974a3ce8167b301a219f63f8ef742a
SSDEEP

192:/nbyhbJV9l6SP1oyn4VzfY/ZAD9oDHiBvI63xIfHWP1b+SxhEe:jkbHd1yVk/ZADyD8vI6hRP1qGd

Score

N/A

Malware Config

Signatures

Files

ab760b8eaf06ac39da13ec7cd8f9677d696f360e11f7e593696b991e483660cb
.zip
Photo-108-145.jpg.scr
.exe windows x86

600ecf98f1e61f2199392992ee943eeb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW

msvcrt

__p__commode
__p__fmode
__set_app_type
_adjust_fdiv
_controlfp
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
srand
rand
memset
_except_handler3

wininet

InternetOpenUrlW
InternetOpenW
InternetReadFile
InternetCloseHandle

kernel32

CopyFileW
DeleteFileA
WriteFile
CloseHandle
Sleep
DeleteFileW
CreateProcessW
GetModuleHandleA
GetStartupInfoA
ExpandEnvironmentStringsW
GetTickCount
CreateFileW

user32

wsprintfW

shell32

ShellExecuteW

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy