5c649c4d1f19f6ddb0cab654e26156f4c38b35015e5a64f70d1bc510bf54ef3d | Triage

Submit
Reports

Overview

overview

7

Static

static

3

Forwarder-TG.exe

windows7-x64

7

Forwarder-TG.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

Telegram bot extractor.zip
Size

6.4MB
Sample

240707-kl4clsxhkp
MD5

03bde0b91af3fc92ad392eb2ce715ae4
SHA1

e9c402720d657ee61a6dda0662c3e0efa8143fa9
SHA256

5c649c4d1f19f6ddb0cab654e26156f4c38b35015e5a64f70d1bc510bf54ef3d
SHA512

1a0e79fa380a64078e1ac1e88d7fbe70730cd6ab3a8f84afab4250747b081d6c023cf997afee5960d5093f7130208b419e05f20ad27e6f1f088537dd27ca14a8
SSDEEP

196608:P1yhKz1l76+E+gAwCwtt2hbxg/eszDKPObC:MuZ6+q3e2eYDBC

Score

7^/10

pyinstaller

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Forwarder-TG.exe

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Forwarder-TG.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  Forwarder-TG.exe
- Size
  
  6.6MB
- MD5
  
  2c69f7a0a351c40cb21849899c378c65
- SHA1
  
  5718b3622d208c7b9d1a27aa40e79c0c154636fb
- SHA256
  
  b29c75c00736aee0e84beeab58044e5fe02715dbba43d917050d19578d79653a
- SHA512
  
  c08a4bfcaf23dce75e85bf0c4acb29d4acab229433ae1e2930493336a496ae082d921983ed5985c1cf5c1aa3466b07040925bd7dbfd978abad7a40ba48b5b233
- SSDEEP
  
  196608:488BAoGL2Vmd6+DBnNgwQ+dtLZ7kwjTeUHOg5Cpb:U4L2Vmd6mNNjd7VPecha
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy