45fe9d0ed6de39500594cada960297bebe7ca930672d61a24df5a95e929662ce | Triage

Submit
Reports

Overview

overview

7

Static

static

1

45fe9d0ed6...ce.exe

windows7-x64

1

45fe9d0ed6...ce.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

45fe9d0ed6de39500594cada960297bebe7ca930672d61a24df5a95e929662ce.exe

Resource

win7-20231215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

45fe9d0ed6de39500594cada960297bebe7ca930672d61a24df5a95e929662ce.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

45fe9d0ed6de39500594cada960297bebe7ca930672d61a24df5a95e929662ce
Size

16.0MB
MD5

40f15400e5d8089ac276177f76526ff5
SHA1

37b3dce98aadd062e1428b66378954aa6168215d
SHA256

45fe9d0ed6de39500594cada960297bebe7ca930672d61a24df5a95e929662ce
SHA512

b8b40928c4fe38e0b4a470cbbf65b52134e168bd0a2f157569de72d73b253bd32b02f86c6d24714dfb562b42c7b0adee93d1aeace080d6ff1a1f010143efce56
SSDEEP

393216:akw+t9L5uaHoGpjBzaKE0dGmJiYQns4z7rDOUPFcCfU:akwwLEaHJrOKExvnBSgM

Score

1^/10

Malware Config

Signatures

Files

45fe9d0ed6de39500594cada960297bebe7ca930672d61a24df5a95e929662ce
.exe windows:4 windows x86 arch:x86

Code Sign

1c:4b:cd:44:a9:d3:19:93:45:48:11:6c:c8:f1:85:66
Certificate

Issuer

CN=南京静逸企业管理有限公司

Not Before

17-10-2023 15:14

Not After

31-12-2039 23:59

Subject

CN=南京静逸企业管理有限公司

ac:2b:13:a9:6d:b7:2f:f2:a4:9d:51:22:2b:35:f5:55:6c:3e:32:f9
Signer

Actual PE Digest

ac:2b:13:a9:6d:b7:2f:f2:a4:9d:51:22:2b:35:f5:55:6c:3e:32:f9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 14.7MB - Virtual size: 14.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 928KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 304KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy