ByfronKiller[.]exe | Triage

Submit
Reports

Overview

overview

7

Static

static

1

ByfronKiller.exe

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ByfronKiller.exe

Resource

win10-20230220-en

spyware stealer

windows10-1703-x64

15 signatures

150 seconds

General

Target

ByfronKiller.exe
Size

69.1MB
MD5

326fb9a7418afc6dcc3bedba2bbdd8fe
SHA1

fc343f97ce2795b00e11551db150fb620ec17544
SHA256

ecee547ad8d943327bea3ca3aab4307ffa2aa215c36b2742a0da712c0e9d819f
SHA512

75ab4070ef2fa02844ad4269e3f57d5491de17ffb8e8d864a79969b06935c9238fcccce788768b91a425271a2bac10e9924811f6b56846486c8cfbc0f06b2411
SSDEEP

1572864:jjddGv1vAixWTrJBthhAQaRAVvhHUzqkbeIq6o3Lur0cCym0Lyv:XGv1vAisTrHzmQ++Z8qkbeIqz3Lu4mL8

Score

1^/10

Malware Config

Signatures

Files

ByfronKiller.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

03:e8
Certificate

Issuer

Not Before

26/03/2023, 19:07

Not After

25/03/2024, 19:07

Subject

CN=Microsoft Corporation

48:5c:82:8e:22:bd:0f:bf:b7:01:11:ec:3b:e1:ad:46:7a:b6:e3:ef
Signer

Actual PE Digest

48:5c:82:8e:22:bd:0f:bf:b7:01:11:ec:3b:e1:ad:46:7a:b6:e3:ef

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 69.1MB - Virtual size: 69.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy