f5e6d291c4aa0119bc9d25f5b8b6bc919681f2a1460bdea3a0d58965fa37891d | Triage

Submit
Reports

Overview

overview

Static

static

f5e6d291c4...1d.exe

windows7-x64

f5e6d291c4...1d.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f5e6d291c4aa0119bc9d25f5b8b6bc919681f2a1460bdea3a0d58965fa37891d.exe

Resource

win7-20220812-en

cybergate remote persistence stealer trojan upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

f5e6d291c4aa0119bc9d25f5b8b6bc919681f2a1460bdea3a0d58965fa37891d.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f5e6d291c4aa0119bc9d25f5b8b6bc919681f2a1460bdea3a0d58965fa37891d
Size

343KB
MD5

197e6ecf5a6b68f37fdd9bb0a8e0fcf8
SHA1

1b46b0c262a1c58b743e09c1bf69ce82021d0d92
SHA256

f5e6d291c4aa0119bc9d25f5b8b6bc919681f2a1460bdea3a0d58965fa37891d
SHA512

b1b2fd7c00b8cf260d728326b07f1bf588de4150f96ec16a37f0c1fa2cb2f20e30c7c5ee711c4fe1fd22fe2d0b663efe52b6e7dede5e28d14bd796dc294dc4cf
SSDEEP

6144:p4OWebc0GYF8Z32i1sGGE6QdQeGfrI21ZmSnF1euYeG8alIpwhqP:pCKrGYF852xGGLhXhZmYeuLaly

Score

N/A

Malware Config

Signatures

Files

f5e6d291c4aa0119bc9d25f5b8b6bc919681f2a1460bdea3a0d58965fa37891d
.exe windows x86

673e661de0d04f93ce3922b4372d79c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
exit
__set_app_type
_except_handler3
_controlfp
_XcptFilter
_exit
fopen
fseek
ftell
malloc
fread
fclose
memset
memcpy
??2@YAPAXI@Z
__p__fmode
??3@YAXPAX@Z

kernel32

VirtualAlloc
VirtualProtect
IsBadReadPtr
CreateThread
WaitForSingleObject
ExitProcess
LoadLibraryA
GetCurrentProcess
GetModuleHandleA
GetProcAddress
FindResourceExA
GetStartupInfoA

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 331KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy