• Metadata

  • Similar files

  • PE

  • Functions

This file was first uploaded on 2023-05-26 07:27. We found at least 20 similar files.

SHA-512 d932fb2cab29afa64b66abf4fd2e21b251ad229c452c2dee315b524507d644384fc5caf057c700bd9ff6cbf0674e3d861e6690f93161d02ab91e5220e18bdd7f
SHA-256 cbb4651ae079249803e66087adfc5c3aca166a5f3147937069c290bdfb3b181f
SHA-1 782ec2a1fedb901f855eac68e8788d6415f0c872
MD5 9e57567ee21222fa361798821a9571aa
SSDEEP 3072:zfY/TU9fE9PEtuPbC6I8xPFSxDEJvhkYO/aXeJ/Q1cNJpn1UIDPJ:DYa61KQ92DshkYiJ/Q141UI
Mime type application/x-dosexec
Magic PE32 executable (GUI) Intel 80386, for MS Windows
First seen 2023-05-26 07:27
Last seen 2023-05-26 07:27
File size 166.40 KB
File names swiss.exe
Yara escalate_privscreenshotwin_files_operationwin_registrywin_token

Tags

add tag

Add tag

Similar files summary
File formats
PE20
File sizes 146.66 KB - 597.37 KB Average: 292.40 KB
# Functions 607 - 607 Average: 607.00
Period 2023-02-28 10:56 - 2023-05-25 04:21
entropy of cbb4651ae079249803e66087adfc5c3aca166a5f3147937069c290bdfb3b181f
5
Sections
7
Resources
7
Modules
165
Imports
0
Certificates
61
Functions
607
Basic blocks
33487
Instructions
6
String references
127
Symbol references
0
Symbols

Comments