Payload[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

Payload.exe

windows10-2004-x64

Resubmissions

12-01-2023 14:38

230112-rzz1nsca7s 10

12-01-2023 14:17

230112-rl6lasgc34 10

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Payload.exe

Resource

win10v2004-20221111-en

njrat redline vidar 494 discovery infostealer persistence spyware stealer trojan

windows10-2004-x64

43 signatures

1800 seconds

General

Target

Payload.exe
Size

625KB
MD5

0dc00c7f7ab8e1d8d5a31d1756479e6f
SHA1

54390f6d36d141ba00b32bb9759cbfe499f38a84
SHA256

1761ef28bbe1f98687df84d540798d65f53975b23683140d3241f0f0cd784d85
SHA512

f430b7d63d8543dc341f5871afad2cc45c4c3e75cb47c345f20820fe7505c10ad8deb5e049fbbaf81a76e8e3c3cc0fcca3f7ef70f6b593529e84ebe622dcb494
SSDEEP

3072:NElc+orpNuOBo22K87Rt6LYDD++8i6YSG9jVmse3KU08E5WyK+W+Ay6T2Q1Ddshp:CWtrZzCt6LYDp8+SG9CAK+WznSYaN

Score

N/A

Malware Config

Signatures

Files

Payload.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 623KB - Virtual size: 622KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy