db46b1c61cb9bd314cbab6fec89abc89f256e7bb691b0f77d1eee8da1f59ef77 | Triage

Submit
Reports

Overview

overview

Static

static

db46b1c61c...77.exe

windows7-x64

db46b1c61c...77.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

db46b1c61cb9bd314cbab6fec89abc89f256e7bb691b0f77d1eee8da1f59ef77.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

db46b1c61cb9bd314cbab6fec89abc89f256e7bb691b0f77d1eee8da1f59ef77.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

db46b1c61cb9bd314cbab6fec89abc89f256e7bb691b0f77d1eee8da1f59ef77
Size

119KB
MD5

4328a1ed7c8ecc6801edcce7c51a85fb
SHA1

9ca512264a89b6e451f6d6f2c73308e4ffb4eb49
SHA256

db46b1c61cb9bd314cbab6fec89abc89f256e7bb691b0f77d1eee8da1f59ef77
SHA512

566e988d4b1cedeb5f901c75d581d2aa0d4e00f85b892e1c9d40ff93d49c04d26f2cdae88a238c4b073d90725ab93b5405c210d196436f8918b96f06bbffa7bd
SSDEEP

3072:87hdr+bkUAe6e7zPeJ2ntg5Qzx+MoqFtZ:SPr7je6qbtg5NqF

Score

N/A

Malware Config

Signatures

Files

db46b1c61cb9bd314cbab6fec89abc89f256e7bb691b0f77d1eee8da1f59ef77
.exe windows x86

fe0d0154556676f8a2b0da70efe2b8f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
InitializeCriticalSection
GetStringTypeW
CreateFileMappingW
DeleteFileA
CreatePipe
FatalExit
SetCurrentDirectoryA
CreateMailslotA
GetConsoleAliasA
VirtualAlloc
DeleteFileA
DeviceIoControl
WriteConsoleW
DeleteFileA
GetModuleHandleA
InterlockedExchange
SetVolumeLabelA
GetShortPathNameA
GetProcessHeap
CreateSemaphoreW
SetEnvironmentVariableA
GetACP

mshtml

ShowModelessHTMLDialog
ShowHTMLDialog
ShowModalDialog
DllEnumClassObjects

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrs
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy