CraftRise[.]exe | Triage

Submit
Reports

Overview

overview

9

Static

static

1

CraftRise.exe

windows11-21h2-x64

9

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

CraftRise.exe

Resource

win11-20240730-en

defense_evasion discovery evasion themida trojan

windows11-21h2-x64

24 signatures

300 seconds

General

Target

CraftRise.exe
Size

789KB
MD5

f82d92979dd88d7443d8cd13c48f8508
SHA1

3d161dad4fa9a430633cecd94c42d63430abffae
SHA256

0c17dd44f1f445c273223d761e947950dc461ebede2b31748865f5d4c39f64a5
SHA512

f8b0f365fc51520f148aabf88c4357709c327b32551908b045aff97c9496c8458eb0c98e49b4c8c0e33d71f6d2b56e359c5d2cd08349fba0e58f92d671b900ac
SSDEEP

12288:XWnIMFkL4Rtpmrc93BpzNK1xD6s4y2O1IwMDMVqfBdcmDBREAOi:FekkRrmrcdHzECs4y2OcMVqJdcrM

Score

1^/10

Malware Config

Signatures

Files

CraftRise.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

68:27:10:a0:74:ff:05:94:45:b1:6f:f0:5a:43:0a:46
Certificate

Issuer

CN=DESKTOP-MVTH10M\\yunus

Not Before

27/06/2020, 13:53

Not After

27/06/2021, 19:53

Subject

CN=DESKTOP-MVTH10M\\yunus

10:be:c4:eb:93:38:eb:33:0b:5c:a4:5b:0b:ca:16:2e:86:68:fe:2b:b6:7a:72:d6:31:79:94:b1:2e:89:b6:da
Signer

Actual PE Digest

10:be:c4:eb:93:38:eb:33:0b:5c:a4:5b:0b:ca:16:2e:86:68:fe:2b:b6:7a:72:d6:31:79:94:b1:2e:89:b6:da

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Dell\visualstudio\source\repos\RiseLauncher\RiseLauncher\obj\Release\RiseLauncher.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 754KB - Virtual size: 753KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy