limerat | Window[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

Window.exe

windows7-x64

Window.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Window.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Window.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

Window.exe
Size

28KB
MD5

88dbe003620c32ac5bf9ac5cec42d169
SHA1

26c7cb32d78077c7112b140a293a7076c66690f1
SHA256

8fc718a75777a80722b50ad6fef3306078e900bbc872bb664a197884721294f0
SHA512

073e2e955057b1959a15483ab99cd89e1751e89b6989c6aca71d666b45a6d0badb379bdb2a72d2159be0117cd1cfff6d567d5816d1d853ddf6f1bb586ad7f588
SSDEEP

384:bB+Sbj6NKsyRu6F1AH9o1yqDfIKKy5dYzvDKNrCeJE3WNgAnD8bJvEAEcQro3lcM:FpFU6F1w9YIKzYz45Nvspxxj

Score

10^/10

limerat

Malware Config

Extracted

Family

limerat

Attributes

aes_key
LeaveMe
antivm
false
c2_url
http://pastebin.pl/view/raw/0755aad0
delay
3
download_payload
false
install
false
install_name
MicrosoftUpdater.tft.exe
main_folder
UserProfile
pin_spread
false
sub_folder
\.Temp\
usb_spread
false

Signatures

Limerat family
limerat

Files

Window.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy