475f6988485f75d5af42a66ab3fa558abadc32fbd84f8722b203ba1eb32a7256 | Triage

Submit
Reports

Overview

overview

9

Static

static

475f698848...56.exe

windows7-x64

9

475f698848...56.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

475f6988485f75d5af42a66ab3fa558abadc32fbd84f8722b203ba1eb32a7256.exe

Resource

win7-20220812-en

discovery evasion

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

475f6988485f75d5af42a66ab3fa558abadc32fbd84f8722b203ba1eb32a7256.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

475f6988485f75d5af42a66ab3fa558abadc32fbd84f8722b203ba1eb32a7256
Size

5.1MB
MD5

60cfb83113b569cfeab728f119619c91
SHA1

446d8ac889a375895d82b5cf8805e66af60ea6d9
SHA256

475f6988485f75d5af42a66ab3fa558abadc32fbd84f8722b203ba1eb32a7256
SHA512

4ba377476fc83be49e25aa4ff0494e16280b3693bfc62528a9cbf4f8862541d433def94b36cc77b46765bffac9df57005907532146fd258e397c5f5ec0427b7a
SSDEEP

98304:MgKU9PkBvL3VTnCThR3sFbY5DFy3boE3IjfvbnlS3oAb7H13cIOx7vQsNZsqq:1KCILFTnCTn3sBAi3IjfvbnsbD13oxEX

Score

N/A

Malware Config

Signatures

Files

475f6988485f75d5af42a66ab3fa558abadc32fbd84f8722b203ba1eb32a7256
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy