4064c1351b8230044acd3b03b5a4bc856c6cfb05676a42f041d8094297ea33ad | Triage

Submit
Reports

Overview

overview

7

Static

static

4064c1351b...ad.exe

windows7-x64

7

4064c1351b...ad.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4064c1351b8230044acd3b03b5a4bc856c6cfb05676a42f041d8094297ea33ad.exe

Resource

win7-20220901-en

spyware stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

4064c1351b8230044acd3b03b5a4bc856c6cfb05676a42f041d8094297ea33ad.exe

Resource

win10v2004-20220901-en

spyware stealer

windows10-2004-x64

3 signatures

150 seconds

General

Target

4064c1351b8230044acd3b03b5a4bc856c6cfb05676a42f041d8094297ea33ad
Size

1.1MB
MD5

07529dbc5603cacb426137b0fa110e46
SHA1

7f88cf7634a633bf2d311fb1f24726c5d5a88259
SHA256

4064c1351b8230044acd3b03b5a4bc856c6cfb05676a42f041d8094297ea33ad
SHA512

7676810ebc8394fbd0b84e3b7f9d6e06afa8edf3e93e80aeacf842deacfb1a13190b1238ff2212ff4f1ad831388f4e862328547317a24ddecac0b229e3ca73bc
SSDEEP

24576:93KpBwAVg/iAsm4jsPGWjz+Toleqz7Pqyz+/m5ijbLHB:Uww0eooyTqyS/mEvjB

Score

N/A

Malware Config

Signatures

Files

4064c1351b8230044acd3b03b5a4bc856c6cfb05676a42f041d8094297ea33ad
.exe windows x86

5b3b723428315132715533f022d7ce9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DeleteCriticalSection
TlsSetValue
WriteFile
Sleep

user32

GetKeyboardType
MessageBoxA

advapi32

RegQueryValueExA

oleaut32

SysFreeString
SafeArrayPtrOfIndex

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

shell32

SHGetFolderPathW

Sections

CODE
Size: 68KB - Virtual size: 412KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 796KB - Virtual size: 796KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy