f82c0950f8100dd2f7aecd293b1e147346a161f86d10ffa5ece2c9774938989f | Triage

Submit
Reports

Overview

overview

Static

static

f82c0950f8...9f.exe

windows7-x64

f82c0950f8...9f.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f82c0950f8100dd2f7aecd293b1e147346a161f86d10ffa5ece2c9774938989f.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

f82c0950f8100dd2f7aecd293b1e147346a161f86d10ffa5ece2c9774938989f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

f82c0950f8100dd2f7aecd293b1e147346a161f86d10ffa5ece2c9774938989f
Size

130KB
MD5

615b4b20a9418e619804f3f91d9e5ea0
SHA1

fe23e6157be0dc1bf877bdc05a2e6ef46459ea0c
SHA256

f82c0950f8100dd2f7aecd293b1e147346a161f86d10ffa5ece2c9774938989f
SHA512

ce6021dcef5a3bf78a351f4bc5ac662b8e74300e7a08c4655512333796255eeb6a713fda41a089351898f1a915ea1f7456c6ccdef7968fe896fbe4ce72fa724d
SSDEEP

3072:hGRar3ge1gbsGJPeT2tzgV9uhnht79AIwJrGm8LYuLu4:0cjge1gZJmyZq9a9BwJP8LYu

Score

N/A

Malware Config

Signatures

Files

f82c0950f8100dd2f7aecd293b1e147346a161f86d10ffa5ece2c9774938989f
.exe windows x86

7989bcf69ac7697741c81d3f8e41788b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ClearCommBreak
GetPrivateProfileIntW
CreateEventW
HeapFree
DeleteFileA
DeviceIoControl
VirtualProtectEx
TlsGetValue
SetLastError
LoadLibraryW
GetFileAttributesW
GetProcessHeap
GetPrivateProfileSectionA
GetCurrentThread
GetStringTypeW
DeviceIoControl
ResumeThread
GetDriveTypeA
CreateMutexA
HeapDestroy
lstrlenA

rasapi32

DwEnumEntryDetails
DwCloneEntry
DwRasUninitialize
RasDialA
DwRasUninitialize
DwEnumEntryDetails
RasDeleteEntryA
RasDialA
DwCloneEntry
DwRasUninitialize
RasDeleteEntryA
DwEnumEntryDetails
RasDialA

pdh

PdhCloseLog
PdhGetLogFileSize
PdhAddCounterA
PdhGetLogFileTypeA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy