9e67002aa59c6a0e73b2d21d3a880fdbf5d523a86daeceb2b73d9a457cfc16f7 | Triage

Submit
Reports

Overview

overview

Static

static

9e67002aa5...f7.exe

windows7-x64

9e67002aa5...f7.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9e67002aa59c6a0e73b2d21d3a880fdbf5d523a86daeceb2b73d9a457cfc16f7.exe

Resource

win7-20220812-en

cybergate 1st evasion persistence stealer trojan upx

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

9e67002aa59c6a0e73b2d21d3a880fdbf5d523a86daeceb2b73d9a457cfc16f7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

9e67002aa59c6a0e73b2d21d3a880fdbf5d523a86daeceb2b73d9a457cfc16f7
Size

1.1MB
MD5

f7bf0f320219ce5b2b80c1ab782de207
SHA1

fbd8114417a8f82e0725a8f301b898fc986072dc
SHA256

9e67002aa59c6a0e73b2d21d3a880fdbf5d523a86daeceb2b73d9a457cfc16f7
SHA512

e41ce2f9b2e805d88d6a7bee6aa18706a88d53cf107b8121a70e9c3103d7f80bef150bd62ae71483054866b2bd7dad4a9229a99f00aa4db116c5f24ad5665066
SSDEEP

24576:IzMzQE18BycsByOrV+5vcfDnajuMCkP6Lbusecnnyus:IQ8E18Bylw5Uh3vrnnu

Score

N/A

Malware Config

Signatures

Files

9e67002aa59c6a0e73b2d21d3a880fdbf5d523a86daeceb2b73d9a457cfc16f7
.exe windows x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 976KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

crsjxkoh
Size: 784KB - Virtual size: 784KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

reyykmqa
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy