file[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

13 signatures

150 seconds

General

Target

file.exe
Size

3.1MB
MD5

b592a4707d49520f208088d8041047fd
SHA1

4fdf742d15229daaffd72bc8e9158f2013200d9f
SHA256

35d31939970bcd27e0d99b1d912532393d73b2cdcfdb4d8623e1e7458a6a388c
SHA512

61c9e9456cce3b2b8c2c88959dd416042f4059796d84bedb753e3662c9e4ba9f0e1dd5347f0ea47ae0a53b36d725506d94d09836005a9a5a9ce13f1ae6aa4125
SSDEEP

49152:EMJ8xqm3zNKxjipke496PDS6TROZTAC0QdB3WLSgwIaGZJRWrKnnYt:EMGKxjSZ4sUUC1dFroJR0KnnY

Score

N/A

Malware Config

Signatures

Files

file.exe
.exe windows x64

37600575dac88fa721ab93d4dc74087c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shell32

ShellAboutA

mscoree

_CorExeMain

advapi32

RegQueryValueW

user32

CopyRect

kernel32

GetModuleHandleA

Sections

.rdata
Size: - Virtual size: 865KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy