640cd3c54e536bc56eb35e4ab5a2b965b7d740fc13ac83b0a0d4237512ec56ef | Triage

Submit
Reports

Overview

overview

Static

static

640cd3c54e...ef.exe

windows7-x64

640cd3c54e...ef.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

640cd3c54e536bc56eb35e4ab5a2b965b7d740fc13ac83b0a0d4237512ec56ef.exe

Resource

win7-20220812-en

warzonerat collection infostealer persistence rat spyware stealer

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

640cd3c54e536bc56eb35e4ab5a2b965b7d740fc13ac83b0a0d4237512ec56ef.exe

Resource

win10v2004-20220812-en

warzonerat collection infostealer persistence rat spyware stealer

windows10-2004-x64

12 signatures

150 seconds

General

Target

640cd3c54e536bc56eb35e4ab5a2b965b7d740fc13ac83b0a0d4237512ec56ef
Size

499KB
MD5

daee9657e1613ba746d9470ee136df63
SHA1

abe11c2929bacc09410efc649f9c2dffb1895db0
SHA256

66c0a5757c93f2e87a7f25263dc3c3f5af3a3e09c5829c942ee7ebe464780752
SHA512

09e3af697cbdb36f2c9d5316c95a85a763a1181b8d3560fb15351db5dea0611a5164c1d2322724b7077bd453907d442ea73e2a968540d6fcc3361cca155a27d1
SSDEEP

6144:cUXgaj2XTZax6QIiP3imiTRccGXKhlwP7j6GlZoLkbBBKB4jF1L5NEe8xOXqAHoe:cUQn5TRTlhWPv6mqQaK9f+Aqg1fGg1Em

Score

N/A

Malware Config

Signatures

Files

640cd3c54e536bc56eb35e4ab5a2b965b7d740fc13ac83b0a0d4237512ec56ef
.zip
640cd3c54e536bc56eb35e4ab5a2b965b7d740fc13ac83b0a0d4237512ec56ef
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

):TxLb`
Size: 408KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 348KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy