SecuriteInfo[.]com[.]Trojan-Spy[.]Win32[.]Banker[.]4697[.]8529 | Triage

Submit
Reports

Overview

overview

1

Static

static

1

SecuriteIn...97.exe

windows7-x64

1

SecuriteIn...97.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

SecuriteInfo.com.Trojan-Spy.Win32.Banker.4697.exe

Resource

win7-20231129-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.Trojan-Spy.Win32.Banker.4697.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

SecuriteInfo.com.Trojan-Spy.Win32.Banker.4697.8529
Size

1.2MB
MD5

02e02e7a91db85a2d61188b14612dfc5
SHA1

7c2e84dc445809f15f17c65065b202ef4cf401a9
SHA256

2cab1566a89734389b4cdf0e311d947a7c64c62bd9557cd72f5921fc721432e4
SHA512

d9577033dd575621e3822957e6042ade63803202cdbd747c09cc14f0df37257a31253925559e25b44a74a03b2b6c0a58312dbd50984bfdff08b498ebbbab16be
SSDEEP

12288:o1YC7DflUGEGrj4RKpbAQuGp4G8R+hb6lf6Y05Qw5ZkXikOUAvIalW7XcV8Wx0Ck:U97NEGrj4QuqE+hU6ddHX/Q75W0A2t

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Trojan-Spy.Win32.Banker.4697.8529
.exe windows:4 windows x86 arch:x86

Code Sign

16:30:24:3f:fa:06:c3:50:ba:85:6b:73:85:6b:ad:d9
Certificate

Issuer

CN=Mad-Monkey Root Certificate

Not Before

28-11-2008 20:14

Not After

31-12-2039 23:59

Subject

CN=Mad-Monkey SPC Certificate

2a:fc:45:df:5b:a7:91:d4:cf:da:5a:88:31:0b:b8:e2:8a:b7:4e:c5
Signer

Actual PE Digest

2a:fc:45:df:5b:a7:91:d4:cf:da:5a:88:31:0b:b8:e2:8a:b7:4e:c5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 975KB - Virtual size: 975KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 13KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy