PO-1607201158 --- NAXILAI[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

PO-1607201...AI.exe

windows7-x64

PO-1607201...AI.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PO-1607201158 --- NAXILAI.exe

Resource

win7-20221111-en

agenttesla collection keylogger spyware stealer trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

PO-1607201158 --- NAXILAI.exe

Resource

win10v2004-20220812-en

agenttesla collection keylogger spyware stealer trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

PO-1607201158 --- NAXILAI.exe
Size

575KB
MD5

bb417ae58fc4b9ca10590171fe917850
SHA1

407cc5cf3db6d2bb3ef1260ac91bcc7691678a0c
SHA256

9c940ed7c933907b99ede7df0cfb3d993a02b452684c0a3115fa4944b9c9cbfe
SHA512

16c195dfbe893ec7a3da325f0258b306c543fa51ae9693718868525e0b85b077b7de957197d4613d52187a3efc4332b876d8c1891c33b564bf6833b60cf014e0
SSDEEP

12288:/BMPrAIQL6RI2t2quDm7ngW15m6sjqBakSxDF3qm0jNIRaW:MtDuDI/15HCFbDFFO2

Score

N/A

Malware Config

Signatures

Files

PO-1607201158 --- NAXILAI.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 566KB - Virtual size: 565KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy