fea636a6e1d24e04019b876c934e997d[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

1

2d608bc71f...e1.exe

windows7-x64

1

2d608bc71f...e1.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2d608bc71f7bc5345161dbcafd234dd45058d585a0dc2750906b1079cfb4bfe1.exe

Resource

win7-20230220-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

2d608bc71f7bc5345161dbcafd234dd45058d585a0dc2750906b1079cfb4bfe1.exe

Resource

win10v2004-20230220-en

lokibot collection spyware stealer trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

fea636a6e1d24e04019b876c934e997d.bin
Size

930KB
MD5

cf5d15cf0ee6e2f29ec457a409083d9b
SHA1

5edf45d8f137ab38177b8573e271f8fa39ab05e7
SHA256

d44f3de994857529d93751ea84218db53ef2f856e739033e59a9edf81f3d8c0c
SHA512

489664edf237f171aca9af2dedf129ecb2851582574aef66c2b77aafcefd2a6f8e4d083548794ee65b97321959780b6f19928a2f34173afe43e78f1c369eba89
SSDEEP

24576:02sGIBocaC1fKQ2UfJYr/t0/YHlo1puOXTHphrPua1pic5pY:brIxayy6RYrlapn6a1pj0

Score

1^/10

Malware Config

Signatures

Files

fea636a6e1d24e04019b876c934e997d.bin
.zip

Password: infected
2d608bc71f7bc5345161dbcafd234dd45058d585a0dc2750906b1079cfb4bfe1.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy