1ab559559249df080f18bb8a888171881d37c858ed85d7b783b91406e13c8f6e | Triage

Submit
Reports

Overview

overview

Static

static

1

1ab5595592...6e.exe

windows7-x64

6

1ab5595592...6e.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

1ab559559249df080f18bb8a888171881d37c858ed85d7b783b91406e13c8f6e.exe

Resource

win7-20240508-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

1ab559559249df080f18bb8a888171881d37c858ed85d7b783b91406e13c8f6e.exe

Resource

win10v2004-20240226-en

evasion ransomware spyware stealer trojan

windows10-2004-x64

16 signatures

150 seconds

General

Target

1ab559559249df080f18bb8a888171881d37c858ed85d7b783b91406e13c8f6e
Size

246KB
MD5

52846df683de9c8ec1a02fb8d7def742
SHA1

29b44c4a4449546eed1d87972b1a6cdf88d30c38
SHA256

1ab559559249df080f18bb8a888171881d37c858ed85d7b783b91406e13c8f6e
SHA512

f9d9450cf6c8af432f326e04dc63d596adc571bd6fe3cea75aa51999361b1e1f17d6e2f6206007acd159531f5595541ed41a8c33c55b22bf04165736cf90ead2
SSDEEP

6144:fWx/LcTEyF1dH3VOVw44UOisbaxHUsAxyOzk9jA1b/:TBREcUkHxy8yAh

Score

1^/10

Malware Config

Signatures

Files

1ab559559249df080f18bb8a888171881d37c858ed85d7b783b91406e13c8f6e
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

51:a9:c6:77:f3:35:54:a4:4d:6a:5f:51:00:7b:ec:fa
Certificate

Issuer

CN=NULL\\andjo

Not Before

13/05/2024, 01:05

Not After

13/05/2025, 07:05

Subject

CN=NULL\\andjo

1c:cf:97:32:9c:d2:c5:76:1f:fe:cc:34:76:d7:1c:7a:7a:12:71:34:77:1d:04:1c:35:6f:39:f9:eb:54:eb:c4
Signer

Actual PE Digest

1c:cf:97:32:9c:d2:c5:76:1f:fe:cc:34:76:d7:1c:7a:7a:12:71:34:77:1d:04:1c:35:6f:39:f9:eb:54:eb:c4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy