Anonymous_Keylogger[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Anonymous_Keylogger.exe
Size

11.9MB
MD5

373e07f676ff7039912dba0def1f2a46
SHA1

23b68c85a40f2dc325f280ab03b6aac19a787ee3
SHA256

68ddf5e136aec4dbf11d632a5c7ece03771c0047078adc97a953e82e9ec2c728
SHA512

dc7cf9edae994aed2c1e6e65ad069d1f5730a1088d16ba37c90d26c5c6672024575a30e25e37f1a27fa60322687e310b5214f788d44713bf3ab1677b77f8f94b
SSDEEP

196608:N92hQJuTCyN1LDyp0znRYlTcJz6GOmIxp4pH7IsEVSL0d0/chzpggb8:NMhQUNR7kc5qxkb+SYuchz

Score

1^/10

Malware Config

Signatures

Files

Anonymous_Keylogger.exe
.exe windows x86

2a2a662be9dffc461398e7c94d0b55b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

strlen
malloc
fopen
fwrite
fclose
memset
getenv
sprintf
__argc
__argv
_environ
_XcptFilter
__set_app_type
_controlfp
__getmainargs
exit

kernel32

CreateProcessA
CloseHandle
SetUnhandledExceptionFilter

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11.8MB - Virtual size: 11.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ