tmp | Triage

Submit
Reports

Overview

overview

8

Static

static

tmp.exe

windows7-x64

8

tmp.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

tmp.exe

Resource

win7-20221111-en

spyware stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmp.exe

Resource

win10v2004-20220901-en

spyware stealer

windows10-2004-x64

7 signatures

150 seconds

General

Target

tmp
Size

2.0MB
MD5

a5889d022b6719928d911c4d95586fa5
SHA1

14cb734dfa63261e2323316e3ab3e17ecacb9808
SHA256

91b63191b54828c4d3f881bfd47d63644d55a9d9f28365ca54d1c20de3a52ed9
SHA512

bc5de06959169b5940f5cc0477db7d56994506e37077b1c4e68fb4e588ab95cae5878a9ff312c07b108799aab0ac382b5701633b1d4f726c531de66c9b1e6936
SSDEEP

12288:gpRhyQwI+mkC3K5QW93TjIo7ts9DhGvd4e1MxdYy7OaADQBTjsrGzgRLYlWPEKmC:S9k15Qijoh5xdbkrjmKeHWl5D3

Score

N/A

Malware Config

Signatures

Files

tmp
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy