limerat | New-Client[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

New-Client.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

New-Client.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

General

Target

New-Client.exe
Size

28KB
MD5

595eb9160ea60139e2834f8216667ab8
SHA1

4ada679c3e5bd7b17171f77a062132f2d9b0805a
SHA256

945b71b62abed5c7bca32598ce35d828e6519a87611e22d8bafdbd8580b88926
SHA512

21938877df6b97325794e493cb51655f05b5e75269d8ac0e58c232acc95f037680d43cf1d795dc6af096cc0639770bd886e8f6012c44b12888fc720c4dd4a976
SSDEEP

384:By+SbjTNKb186ki1AHJ/OWqD8A+kqvDKNrCeJE3WNgO3V/CpOcgvR5EQro3lc79Q:A+bm6ki1wJbA+ko45Nz/wOc85mrj

Score

10^/10

limerat

Malware Config

Extracted

Family

limerat

Attributes

aes_key
asf
antivm
true
c2_url
https://pastebin.com/sprwUYBJ
delay
3
download_payload
false
install
false
install_name
Wservices.exe
main_folder
Temp
pin_spread
false
sub_folder
\
usb_spread
false

Signatures

Limerat family
limerat

Files

New-Client.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy