tmp | Triage

Submit
Reports

Overview

overview

Static

static

tmp.exe

windows7-x64

tmp.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

tmp.exe

Resource

win7-20221111-en

snakekeylogger collection keylogger spyware stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmp.exe

Resource

win10v2004-20220901-en

snakekeylogger collection keylogger spyware stealer

windows10-2004-x64

13 signatures

150 seconds

General

Target

tmp
Size

845KB
MD5

cdcefe2a9534f0cd4960906e3acabc89
SHA1

54505d3d097f37d94635698ccc828dd9bdf378a9
SHA256

ad7e23da6a9f779b2420c7e40293aa8f54e4b04a04c2a628a9d458de5bc54c06
SHA512

d8858c8d1af0873cae85bd7327da7ff5714672db8e425b5604008fc8a5477af1976aeac624bae3f8b84962e501ed8ba0f8353e346d07686c3d30bffffeb458e7
SSDEEP

12288:GorqU+xLBdwu8tKPLPysUAyt/fz3/yrEI5fLja9YvPZPDdzoa1cfN:D28e0l/bKEqfL+YnZPDdEPf

Score

N/A

Malware Config

Signatures

Files

tmp
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 843KB - Virtual size: 843KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy