file | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20220901-en

privateloader loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20220901-en

privateloader discovery loader spyware stealer

windows10-2004-x64

10 signatures

150 seconds

General

Target

file
Size

3.6MB
MD5

94c328f95807731f07b967ac704dea37
SHA1

d4b276761b2b047775acbcf2a09e5824f91a9766
SHA256

27b059a733759cec51e700f5e133b19f84b27a41981e0ff9c3a92f7bec12c985
SHA512

0f5d979cfbadf5411564b869666652fb249c6c26827b6b43864d438b3d1e2cdb653f8c09324e0bda655e1c69fd11fed12b9a46873fc5a24dcc0f12fe285555e9
SSDEEP

98304:1vtyd45GYd/syb76mBnOd2MP/RwQxaNnjqO/:1vty25BSUemxOd2wqQxmem

Score

N/A

Malware Config

Signatures

Files

file
.exe windows x86

d5be745476c4db4c1409a53f1c6de55b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

GetWindowRect

advapi32

RegQueryValueExA

comctl32

InitCommonControls

gdiplus

GdipAlloc

gdi32

DeleteObject

crypt32

CryptUnprotectData

setupapi

SetupDiGetDeviceInterfaceDetailA

shell32

SHGetFolderPathA

Sections

Size: - Virtual size: 7.7MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.6MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy