ba09f284f6f8acb6400d6d8ccddd0993[.]bin | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

52d37ef5f4...e6.exe

windows7-x64

5

52d37ef5f4...e6.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

52d37ef5f414ea192c1512f8740e0bb53e2d85ca04f133468a5267b491cb2ce6.exe

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

52d37ef5f414ea192c1512f8740e0bb53e2d85ca04f133468a5267b491cb2ce6.exe

Resource

win10v2004-20221111-en

quasar owl2 spyware trojan

windows10-2004-x64

7 signatures

150 seconds

General

Target

ba09f284f6f8acb6400d6d8ccddd0993.bin
Size

825KB
MD5

16920b502a14835c27f2c5fc897a53a4
SHA1

de4b686b13927b541bc7f358218420030ac69490
SHA256

357f5843804874c6728b48ac3c2ce1fd4323a3bfa46c7acbf02eb2b9c2b5795d
SHA512

5ca4b47645f1cd0abcc92b0b7e84a69280eddb2313232f8055479013acaa57e20a549a3f8ab075dcb7a9da86624d9e3a6aa5914644cb33036a0fdb0f17b7e17f
SSDEEP

24576:U+ce/f0LBYw323fkwHlmp2ltVJwGfD+qbAaDUdIR7VI:U+nHkYwSkwHlmp2lxwaDqdn

Score

N/A

Malware Config

Signatures

Files

ba09f284f6f8acb6400d6d8ccddd0993.bin
.zip

Password: infected
52d37ef5f414ea192c1512f8740e0bb53e2d85ca04f133468a5267b491cb2ce6.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 828KB - Virtual size: 827KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.