d458cde8fb2dd82df1ea229bbb3d0e5df51595b37e94fc8bcaa0dec7f0e718b1 | Triage

Submit
Reports

Overview

overview

8

Static

static

d458cde8fb...b1.exe

windows7-x64

8

d458cde8fb...b1.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d458cde8fb2dd82df1ea229bbb3d0e5df51595b37e94fc8bcaa0dec7f0e718b1.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

d458cde8fb2dd82df1ea229bbb3d0e5df51595b37e94fc8bcaa0dec7f0e718b1.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d458cde8fb2dd82df1ea229bbb3d0e5df51595b37e94fc8bcaa0dec7f0e718b1
Size

175KB
MD5

77808d39eda41430d081f27f5bc3d203
SHA1

c45e8619f73bd59dde13fcd7b26212e294d7ed43
SHA256

d458cde8fb2dd82df1ea229bbb3d0e5df51595b37e94fc8bcaa0dec7f0e718b1
SHA512

be7f09145045675a3706990a2d4e38574b139ce4e7dbc6bb9ae729514f6e85b266d606f5548e879bd024c0b47cd57d78dbf46bb55284a652a481f9fa1b864aa2
SSDEEP

3072:bPT3AEuuvm+z8D1Hi1ok9Cm6AOBgILORZwVT5o1EZl70JV4m0/nV5:3Auvvz4Hi22ylBfK83fZl7Rt5

Score

N/A

Malware Config

Signatures

Files

d458cde8fb2dd82df1ea229bbb3d0e5df51595b37e94fc8bcaa0dec7f0e718b1
.exe windows x86

6aa3f8321d761b4627532abff0b32137

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

ReleaseCapture
LoadCursorA
MonitorFromWindow
SetWindowPos
GetWindowLongA
MoveWindow
GetDlgItem
SetCursor
IsWindow
FillRect
ReleaseDC
GetDC
SetWindowLongA
GetSysColor
SetCapture

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

kernel32

SetTapePosition
FindClose
ClearCommError
Sleep
GetCurrentProcessId
GetLocalTime
InterlockedExchange
EnumResourceNamesA
FatalExit
GetVersion
GetWindowsDirectoryA
FindFirstFileA

oleacc

LresultFromObject
CreateStdAccessibleObject

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

mciSendCommandA
sndPlaySoundA

Sections

.text
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy