rookie_2[.]16_portable[.]zip | Triage

Submit
Reports

Overview

overview

8

Static

static

rookie_2.1...16.exe

windows7-x64

8

rookie_2.1...16.exe

windows10-2004-x64

6

rookie_2.1...ne.cmd

windows7-x64

8

rookie_2.1...ne.cmd

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

rookie_2.16_portable/AndroidSideloader_v2.16.exe

Resource

win7-20220901-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

rookie_2.16_portable/AndroidSideloader_v2.16.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

rookie_2.16_portable/Rookie Offline.cmd

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral4

Sample

rookie_2.16_portable/Rookie Offline.cmd

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

rookie_2.16_portable.zip
Size

464KB
MD5

a7f44d843c3e8ee92fed1a8a2fd64ff3
SHA1

27b52497a8d3c9ac285316f9884523fa0bcae32c
SHA256

936a12b6d06e5ae7e23c752ef6ca5d7d30dec1c5e948562b7ecb7af8ab830c7b
SHA512

ce7170d0233e21b61fc10411a1efa6c11d7364748f738ed7447789cffe16c81517f962641892c1813196f109594a75a4546935151beaadbf353138bd61384ee3
SSDEEP

6144:OsG9Hk0jjhC4USNFDuxOG3hGSSuSigO88wXKFt1nef1XwOuVowRt7mUrN5d+UftD:M9E0AUbutKuSigOKytMwOstDhndhB

Score

N/A

Malware Config

Signatures

Files

rookie_2.16_portable.zip
.zip
rookie_2.16_portable/AndroidSideloader_v2.16.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 670KB - Virtual size: 669KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 403KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
rookie_2.16_portable/Rookie Offline.cmd

© 2018-2025

Terms | Privacy