48bc23c628e7dbec916fbe213d1c19336ebab4f868d08[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

48bc23c628...08.exe

windows7-x64

48bc23c628...08.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

48bc23c628e7dbec916fbe213d1c19336ebab4f868d08.exe

Resource

win7-20220901-en

vidar 1364 discovery spyware stealer

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

48bc23c628e7dbec916fbe213d1c19336ebab4f868d08.exe

Resource

win10v2004-20220901-en

vidar 1364 discovery spyware stealer

windows10-2004-x64

12 signatures

150 seconds

General

Target

48bc23c628e7dbec916fbe213d1c19336ebab4f868d08.exe
Size

4.0MB
MD5

53d2acf9be6296d3aceb4ae9ac788f8c
SHA1

da60d78c18ccea5e394758c1ab226912b4240aad
SHA256

e6a6768113ac95564ad2d20108435e8dd65bfe3fc741249039835076d4aba350
SHA512

1494af01a22ed6615939052dabad7572d4ee69813dbf7894c0105db63c2cf00806ffb246cdc21eedf1ffbe36ace4d0f74a32b1d0d9c03b4612c8e9438a0edbe7
SSDEEP

98304:sJtlRjoW9bzlVnQ3NHJFiU92BY8Lk3fAcpiZ8K:epNpVnQ3xrcBY2cMZh

Score

N/A

Malware Config

Signatures

Files

48bc23c628e7dbec916fbe213d1c19336ebab4f868d08.exe
.exe windows x86

017f1b735efb908c67e906635ee4b33d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

Sections

.text
Size: - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.!!! 0
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.!!! 1
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.!!! 2
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 173KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy