8648[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

3164_23_147_PDF.exe

windows7-x64

3164_23_147_PDF.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3164_23_147_PDF.exe

Resource

win7-20220812-en

bitrat trojan upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

3164_23_147_PDF.exe

Resource

win10v2004-20220812-en

bitrat trojan upx

windows10-2004-x64

13 signatures

150 seconds

General

Target

8648.zip
Size

6.2MB
MD5

45ebb4ed0ef196295bc48e76e4effc18
SHA1

e7a4aabbb387f90f1e5d66795fe70d1787f950b7
SHA256

67cda8c74585c33e1aaf255bf9283b781c2f4e15b7833ea02c3a725bc4ef9ea1
SHA512

d1c9ffe1a0f2d3ca84e381e12796c29eb6759b71a412cd1a3323c309f214fca764a35a10b7a29a8a62d36d6b372ce1c9e9df444e448d6ee41fd7aa139a6b3fdb
SSDEEP

196608:h2bBrJC0MJAFrGVdQAp2++dQSXQrdoUZY:h2V9CjirGTpvbG

Score

N/A

Malware Config

Signatures

Files

8648.zip
.zip

Password: infected
9ab9160293f45507b6dd5b1edfd301337fd64fad48d59500e13772a026196ac2
.vhd
out.vhd
.vhd
$RECYCLE.BIN/desktop.ini
3164_23_147_PDF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System Volume Information/WPSettings.dat

© 2018-2024

Terms | Privacy