b24e5c03d3ee5aa07a4356b188ca08b5

PE Executable
|
MD5: b24e5c03d3ee5aa07a4356b188ca08b5
|
Size: 589.82 KB
|
application/x-dosexec

Infection Chain

Summary by MalvaGPT

Characteristics

Hash	Hash Value
MD5	b24e5c03d3ee5aa07a4356b188ca08b5
Sha1	bd0d5af1ce9397bfd45fb70f6a7d22766ce8fde1
Sha256	0bd574d0e076982665e2e0f1de667d8e2c42d5aa00f03ef106eaef5a807b298c
Sha384	6d5de87f7a40cba88673ea95554279e3f6c5fdac148abceb35a6abd7cc001e279f049771f15406af10da4972123bd81e
Sha512	364849527b2c6271455733e1d1f3266c489e5cbfdf2a853515ef4576c2fb8ecbd0aca9e89d5cdb682d6905a2593ebe5b5a80057f159c13fc4c8f792cd705a031
SSDeep	12288:vsjCF2QZiOU+4zX7wM45QygROD22O3ZGdZK:vOC39Uv7V4WnROD22cqK
TLSH	CDC4D04AFB4381B0E8090837146AA77B1630AE174729CEC7E7C0FB58B977BD2757A605

PeID

Microsoft Visual C++ v6.0 DLL

File Structure

Informations

Name0	Value
Info	PE Detect: PeReader OK (file layout)
Info	Authenticode present at 0x39400 size 7801 bytes
Info	Overlay extracted: Overlay_4fe4ec29.bin (347520 bytes)

Artefacts

Name0	Value
LummaEncrypted@00039526 [070615000000]
LummaEncrypted@00039535 [120614235959]	K_
LummaEncrypted@000398DD [031204000000]
LummaEncrypted@000398EC [131203235959]	JK
LummaEncrypted@00039C78 [040716000000]
LummaEncrypted@00039C87 [140715235959]	M^
LummaEncrypted@0003A191 [090211000000]
LummaEncrypted@0003A1A0 [120211235959]	K[
LummaEncrypted@0003A892 [090213104341]	JC
LummaEncrypted@000404B6 [2DF8D04C]
LummaEncrypted@00040DC5 [00000000]
LummaEncrypted@00040DDD [000000000000]
LummaEncrypted@00041205 [00000000]
LummaEncrypted@00041268 [8D8F21B62347274727422C422C]	????? ??
LummaEncrypted@0004128A [1A18B6495E665E66A19A5F663902363B9B9748CDA72598CF02BBF20C3D372E810F1D404791]	D~?/???/#?r?????=.??DE'/????
LummaEncrypted@000412DB [A7A50BDC15E4A3E5A3E5A3]	?A?9@?
LummaEncrypted@0004130E [00000001]
LummaEncrypted@00041318 [3832D640]
LummaEncrypted@00041330 [00A0C911005A]
LummaEncrypted@00041344 [00000000]
LummaEncrypted@00005236 [2DF8D04C]
LummaEncrypted@00005B45 [00000000]
LummaEncrypted@00005B5D [000000000000]
LummaEncrypted@00005F85 [00000000]
LummaEncrypted@00005FE8 [8D8F21B62347274727422C422C]	????? ??
LummaEncrypted@0000600A [1A18B6495E665E66A19A5F663902363B9B9748CDA72598CF02BBF20C3D372E810F1D404791]	D~?/???/#?r?????=.??DE'/????
LummaEncrypted@0000605B [A7A50BDC15E4A3E5A3E5A3]	?A?9@?
LummaEncrypted@0000608E [00000001]
LummaEncrypted@00006098 [3832D640]
LummaEncrypted@000060B0 [00A0C911005A]
LummaEncrypted@000060C4 [00000000]

b24e5c03d3ee5aa07a4356b188ca08b5 (589.82 KB)

File Structure

Characteristics

No malware configuration were found at this point.

Artefacts

Name0	Value	Location
LummaEncrypted@00039526 [070615000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00039535 [120614235959]	K_ Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@000398DD [031204000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@000398EC [131203235959]	JK Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00039C78 [040716000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00039C87 [140715235959]	M^ Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@0003A191 [090211000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@0003A1A0 [120211235959]	K[ Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@0003A892 [090213104341]	JC Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@000404B6 [2DF8D04C]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00040DC5 [00000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00040DDD [000000000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00041205 [00000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00041268 [8D8F21B62347274727422C422C]	????? ?? Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@0004128A [1A18B6495E665E66A19A5F663902363B9B9748CDA72598CF02BBF20C3D372E810F1D404791]	D~?/???/#?r?????=.??DE'/???? Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@000412DB [A7A50BDC15E4A3E5A3E5A3]	?A?9@? Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@0004130E [00000001]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00041318 [3832D640]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00041330 [00A0C911005A]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00041344 [00000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5
LummaEncrypted@00005236 [2DF8D04C]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@00005B45 [00000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@00005B5D [000000000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@00005F85 [00000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@00005FE8 [8D8F21B62347274727422C422C]	????? ?? Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@0000600A [1A18B6495E665E66A19A5F663902363B9B9748CDA72598CF02BBF20C3D372E810F1D404791]	D~?/???/#?r?????=.??DE'/???? Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@0000605B [A7A50BDC15E4A3E5A3E5A3]	?A?9@? Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@0000608E [00000001]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@00006098 [3832D640]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@000060B0 [00A0C911005A]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin
LummaEncrypted@000060C4 [00000000]	Malicious	b24e5c03d3ee5aa07a4356b188ca08b5 > Overlay_4fe4ec29.bin

You must be signed in to post a comment.

b24e5c03d3ee5aa07a4356b188ca08b5

PE Executable | MD5: b24e5c03d3ee5aa07a4356b188ca08b5 | Size: 589.82 KB | application/x-dosexec

PE Executable
|
MD5: b24e5c03d3ee5aa07a4356b188ca08b5
|
Size: 589.82 KB
|
application/x-dosexec