deflated-gimp-2[.]10[.]32[.]-setup-1[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

deflated-g...-1.exe

windows7-x64

deflated-g...-1.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

deflated-gimp-2.10.32.-setup-1.exe

Resource

win7-20221111-en

purecrypter redline redline discovery downloader infostealer loader persistence spyware stealer

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

deflated-gimp-2.10.32.-setup-1.exe

Resource

win10v2004-20221111-en

aurora redline redline discovery infostealer persistence spyware stealer

windows10-2004-x64

15 signatures

150 seconds

General

Target

deflated-gimp-2.10.32.-setup-1.exe
Size

217KB
MD5

009d70132e15d6f0bf593da170f0b7b0
SHA1

5a1bd8f31059de4e46778510fffd23c87bc32740
SHA256

af8ea2ae4917c68825f1c60f3900634cc7c2d3d2de079215f1aacf116841418c
SHA512

5192b9c860b4e10a329b181f4419cd7443f602ec9174d9c538e0843d10e59e4472df0e1b2a6572d96f89ad061eb1f6ea6240c8dd11d860664f93500dbee4824d
SSDEEP

3072:uI71VdaROKutNI6mKR0QHTT1Xm4B1jj0hhih3GD2xvwN64u/KKR7:uInda0KuksNzB1jjAoGD2lww4V

Score

N/A

Malware Config

Signatures

Files

deflated-gimp-2.10.32.-setup-1.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy