98ded35046e38e4b7044323390c57f64[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

98ded35046...64.exe

windows7-x64

98ded35046...64.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

98ded35046e38e4b7044323390c57f64.exe

Resource

win7-20221111-en

privateloader loader spyware stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

98ded35046e38e4b7044323390c57f64.exe

Resource

win10v2004-20220901-en

privateloader loader spyware stealer

windows10-2004-x64

6 signatures

150 seconds

General

Target

98ded35046e38e4b7044323390c57f64.exe
Size

5.3MB
MD5

98ded35046e38e4b7044323390c57f64
SHA1

d98c5f05ee6b070fdabad179c2da15b9c4fcc2a8
SHA256

c2051ed80860178c791220b7ab760d038e03091e4c02395a92eed4aea3872ae7
SHA512

81d99fd6205b7112ce40674e6df68ff4f81a9217c5129926d648113e15f80cae2b044699fdafc5023fcfa2ad6ead33c962e9c48fd18c5bead18de9ad193a752b
SSDEEP

98304:HDuckjyhM3p/g5/XJfy7pheIYmYR9roAGMHvPVEeUqO:HDcjyhM25wOIYfzGutEeUqO

Score

1^/10

Malware Config

Signatures

Files

98ded35046e38e4b7044323390c57f64.exe
.exe windows x86

5fa851b72617ba71c133d33cdfe7c388

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

CharNextA

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

CoInitializeEx

wtsapi32

WTSSendMessageW

Sections

.MPRESS1
Size: 4.5MB - Virtual size: 10.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 833KB - Virtual size: 833KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy