TorBrowserPortable[.]exe | Triage

Submit
Reports

Overview

overview

8

Static

static

1

TorBrowser...le.exe

windows7-x64

8

TorBrowser...le.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

TorBrowserPortable.exe

Resource

win7-20220812-en

discovery spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

TorBrowserPortable.exe

Resource

win10v2004-20221111-en

discovery spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

TorBrowserPortable.exe
Size

11.9MB
MD5

421a4cccd48ca467a49c8d96223a650d
SHA1

6d05692f41b55efa26032600ea5100a0d09ceb56
SHA256

d1082139250361b2ef36a09601c7a6b22997ff2711ead45b644b94d763e2f552
SHA512

de12d4c4f3f3d2419112bf4ad1751a40d3212b2d736e35fdff1c4b62c2d29d81e5771a8c3421ef35b47dac35f44b2da7f5cbd4c9e74836a5a6bf8f39d97a3524
SSDEEP

196608:vrI5LXQ9PWnI8vxSn7c8efjcN+Yk7fQ5unh5Q2djHQ0S92wDM4pI5VVh+q/MjvE2:TBP8vYn7pe7ci7+wlEpDM4IcAgE1E

Score

1^/10

Malware Config

Signatures

Files

TorBrowserPortable.exe
.exe windows x86

16cf5db3878b2dcf0f97ac9d337625cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

OffsetRect
CharUpperBuffW

gdi32

GetDeviceCaps

ole32

CoInitialize

Sections

.text
Size: - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uxo
Size: - Virtual size: 9.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

."?%
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1k_
Size: 11.8MB - Virtual size: 11.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 87KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy