d20008051ebd536e50d34dcc4e718804[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

d20008051e...04.exe

windows7-x64

d20008051e...04.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d20008051ebd536e50d34dcc4e718804.exe

Resource

win7-20230220-en

privateloader loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

d20008051ebd536e50d34dcc4e718804.exe

Resource

win10v2004-20230220-en

privateloader loader spyware stealer

windows10-2004-x64

6 signatures

150 seconds

General

Target

d20008051ebd536e50d34dcc4e718804.exe
Size

4.1MB
MD5

d20008051ebd536e50d34dcc4e718804
SHA1

d1026c5402523e2ce23a7b7855ce2b2d36d8316a
SHA256

844b92d102379990f96dd712b1eb2ade90bee0412333a11a74f77723ff4f91f9
SHA512

c98bf8f92f98920f8b6f8961d7b1c136e8159aaf43ee5716337b5b66d69da483b8d207df2ff360ff981203c08369c8d13272bc73f7dfb60fc8dd0c10640b85fc
SSDEEP

98304:ShSlPgpqvGXI30baIvyatgFiw/+TMmoiN3cwbMtnb5hJ7iPDi7Og:Sh7pqvqvwUwYpNMwbeb5hSDi7O

Score

1^/10

Malware Config

Signatures

Files

d20008051ebd536e50d34dcc4e718804.exe
.exe windows x86

5720bd0cee3ab34ad6694631cdea7f20

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

CharNextA

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

CoInitializeEx

Sections

.MPRESS1
Size: 3.9MB - Virtual size: 8.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy