limerat | Checkeur netflix validator by crips[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

Checkeur n...ps.exe

windows7-x64

Checkeur n...ps.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Checkeur netflix validator by crips.exe

Resource

win7-20221111-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

Checkeur netflix validator by crips.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

General

Target

Checkeur netflix validator by crips.exe
Size

205KB
MD5

d36f15bef276fd447e91af6ee9e38b28
SHA1

14836dd608efb4a0c552a4f370e5aafb340e2a5d
SHA256

6d08ed6acac230f41d9d6fe2a26245eeaf08c84bc7a66fddc764d82d6786d334
SHA512

ada85b6334f457b1217d4d08246f4ccb23bfb22a024aa6a7e1df00c9e83d72b58020b45fefc43eddfa41c54743b01f73632da2ff7b7bcee01d401235289ab242
SSDEEP

3072:DDiv2GSyn88sH888wQ2wmVgMk/211h36vEcIyNTY4WZd/w1UwIwEoTqPMinXHx+i:XOayy

Score

10^/10

limerat

Malware Config

Extracted

Family

limerat

Wallets

86hac88hN1LipZ8Pzugfp65vMuPzKdYQudAKeKsjzU4RKRtTSSRSzZDNech2VwKy6yEPu8XZGYDsEd51M3vBG6ozAUqPpk3

Attributes

aes_key
20.199.13.167
antivm
true
c2_url
https://pastebin.com/raw/sxNJt2ek
delay
3
download_payload
true
install
true
install_name
checker netflix.exe
main_folder
AppData
pin_spread
true
sub_folder
\
usb_spread
true

Signatures

Limerat family
limerat

Files

Checkeur netflix validator by crips.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy