im change try[.]exe | Triage

Submit
Reports

Overview

overview

1

Static

static

1

im change try.exe

windows7-x64

im change try.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

im change try.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

im change try.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

im change try.exe
Size

631KB
MD5

15a5db4aa2d9315cafd67927e716bb4c
SHA1

e27431e0d7ef42790fdd771394cd7256a1fa050a
SHA256

d3653e05583354a63ec04dd348a52a5f4ed12ad33df1addcf1791f31aa751a3d
SHA512

d7b2c60c2e96bd5687275fbbb6a2556aaaa24a2b102470e290d5714fbc920e9a827298ced4a1b3bcd79ba0d5faba6eb881659bcc2f5e5bd370483a939b4cfc42
SSDEEP

6144:9/7oYfSHQPWTUh4k57dNlv1K95bYA6n8Jn/TysT/AKrn+qHj6SzVUwAcc9cxcgS:R7qTUF57dNl2Lp/h3r+qHjHJUwABcn

Score

1^/10

Malware Config

Signatures

Files

im change try.exe
.exe windows x64

Password: imtest1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 552KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy