Annabelle By TGet![.]zip | Triage

Submit
Reports

Overview

overview

Static

static

Annabelle.exe

windows7-x64

Annabelle.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Annabelle.exe

Resource

win7-20220812-en

evasion persistence ransomware trojan

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

Annabelle.exe

Resource

win10v2004-20220812-en

evasion persistence ransomware trojan

windows10-2004-x64

25 signatures

150 seconds

General

Target

Annabelle By TGet!.zip
Size

15.6MB
MD5

3d62b32baa97635046b29d94720ca502
SHA1

5c451e42bf2ae1696e385ca3db69456b595420e2
SHA256

cbac3e598d3493c1736f3abc684d4735ad290b6ede81d50e4944c727b77d93d0
SHA512

60a6d3ba23acadffcefee190040c02af26da9b61ac380d4e147e474c91862edeb000fc97c0837a185809b0b6752dd67c2f0906e9d98103e31721bab3fee51d57
SSDEEP

393216:Cx9OULg05a1C5GKChb1ujulybBjhrcbkizGw2m:q9OULnkC5ihwSyNhrRizf

Score

N/A

Malware Config

Signatures

Files

Annabelle By TGet!.zip
.zip

Password: tgetloko
Annabelle By TGet!/2018-03-10 21-51-06 Screenshot.png
.png
Annabelle By TGet!/Annabelle.7z
.7z

Password: tgetloko
Annabelle.bin
.exe windows x64

Password: tgetloko

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 15.7MB - Virtual size: 15.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Annabelle By TGet!/Leeme.txt

© 2018-2025

Terms | Privacy