1a5c12a798e43dc7326e918a8a38d61b5016f7eadd7d5971d12397555d860fd2 | Triage

Submit
Reports

Overview

overview

Static

static

1a5c12a798...d2.exe

windows7-x64

1a5c12a798...d2.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1a5c12a798e43dc7326e918a8a38d61b5016f7eadd7d5971d12397555d860fd2.exe

Resource

win7-20221111-en

cybergate post web persistence stealer trojan upx

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

1a5c12a798e43dc7326e918a8a38d61b5016f7eadd7d5971d12397555d860fd2.exe

Resource

win10v2004-20220901-en

cybergate post web persistence stealer trojan upx

windows10-2004-x64

16 signatures

150 seconds

General

Target

1a5c12a798e43dc7326e918a8a38d61b5016f7eadd7d5971d12397555d860fd2
Size

1.4MB
MD5

f401bc8ecfa9264e3a6958ee44d4248f
SHA1

15122ef4dc9f1e72083e320609c8eda17dbb453a
SHA256

1a5c12a798e43dc7326e918a8a38d61b5016f7eadd7d5971d12397555d860fd2
SHA512

70d52a365b370b880ad155ddcc2fcbe809bf84192be72945ef5dfe7daf18a7e7f23b65229ad3402e925abf7a48e30e035576ffb3a6a0e27cf96d302ec1d80796
SSDEEP

24576:EW5iekRsx5cyLzoy4z5LPrMcs5dmYOYFQn1s97QJv8wBaRW5ie4uto8i5aLdM+rI:EqLzbL0zzJsKJS1QJv8wBTAutnkke+UT

Score

N/A

Malware Config

Signatures

Files

1a5c12a798e43dc7326e918a8a38d61b5016f7eadd7d5971d12397555d860fd2
.exe windows x86

7855dadd8bf8efa83300f3f382a049ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord709
ord632
ord525
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord608
ord717
ProcCallEngine
ord644
ord570
ord648
ord100
ord616

Sections

.text
Size: 996KB - Virtual size: 994KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 388KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy