Team.exe
First submission 2024-09-01 21:13:32
File details
File type: | PE32+ executable (GUI) x86-64, for MS Windows |
Mime type: | application/x-dosexec |
File size: | 2846.08 KB (2914387 bytes) |
Compile time: | 2024-08-03 20:14:03 |
MD5: | 9922d8d976eea26248619da828231868 |
SHA1: | 238a1daa156100dc0374aea9b853025797de25cd |
SHA256: | 846e487a9418d2522dc16068041090a63d7fc0fd6f85f3f8a59247088d32b4e6 |
Sections 11 | .text .data .bss .idata .didata .edata .tls .rdata .reloc .pdata .rsrc |
Directories 5 | import export resource tls relocation |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
URLs, FQDN and IP indicators 1
PE Sections 2 suspicious
Name | VAddress | VSize | Size | SHA1 | MD5 | Suspicious |
---|---|---|---|---|---|---|
.text | 0x1000 | 0x9ac910 | 10144256 | 5452e598fcdf9f2f52642968c9a10265243c6045 | 5757b1eaf053fee007a8c00eb755bbef | |
.data | 0x9ae000 | 0xd2400 | 861184 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.bss | 0xa81000 | 0x1f25c | 0 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.idata | 0xaa1000 | 0x5218 | 21504 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.didata | 0xaa7000 | 0x914c | 37376 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.edata | 0xab1000 | 0x9d | 512 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.tls | 0xab2000 | 0x370 | 0 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.rdata | 0xab3000 | 0x6d | 512 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.reloc | 0xab4000 | 0x857a4 | 546816 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.pdata | 0xb3a000 | 0x80214 | 525312 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e | |
.rsrc | 0xbbb000 | 0x2ca400 | 2925568 | da39a3ee5e6b4b0d3255bfef95601890afd80709 | d41d8cd98f00b204e9800998ecf8427e |
Strings analysis - File found
Library |
COMCTL32.dll |
ole32.dll |
IMM32.dll |
KERNEL32.dll |
OLEAUT32.dll |
USER32.dll |
UxTheme.dll |