file[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

3

file.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

14 signatures

150 seconds

General

Target

file.exe
Size

865KB
MD5

436e194128a4ca6ec11d7d41b02dc381
SHA1

84ff073032e5286f177b931ec7ebf345e0e95bb0
SHA256

2edd00e586bcfb09d7472eb14e05fc723a84219dbddd4b461fb2373761c0052e
SHA512

c5156bdab092d22e1c1a1bd242cedaf7c41b2c1308c062ec6f3d43db61c0f23ab078a2645692863a4657b4416a6a3cd9f9468ea505dc206ed82b9be13241b3d9
SSDEEP

12288:W6NYQqLWDZDQfIFudYhbZa6pR3UsbDvGvRAmopLvis1YaXT4FvIkyJ:W6NYJLKDpda6vkZRAmopLK5wqvG

Score

N/A

Malware Config

Signatures

Files

file.exe
.exe windows x64

f013b5f1e68701640e2bf73ad38bb294

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shell32

SHChangeNotifyRegister

mscoree

_CorExeMain

advapi32

GetUserNameW

user32

GetDC

kernel32

GetModuleHandleA

Sections

Size: - Virtual size: 877KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 278KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy