65c6ddbdb00d1a76aaf4ad604cb95654c57bfbd4ac5d530e6565d486423e556f | Triage

Submit
Reports

Overview

overview

Static

static

65c6ddbdb0...6f.exe

windows7-x64

65c6ddbdb0...6f.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

65c6ddbdb00d1a76aaf4ad604cb95654c57bfbd4ac5d530e6565d486423e556f.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

65c6ddbdb00d1a76aaf4ad604cb95654c57bfbd4ac5d530e6565d486423e556f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

65c6ddbdb00d1a76aaf4ad604cb95654c57bfbd4ac5d530e6565d486423e556f
Size

130KB
MD5

60c7c9e562e0b4e3d0e4ae900041c140
SHA1

aa4928312a6da79d6e70a7ff593e53832f7c4173
SHA256

65c6ddbdb00d1a76aaf4ad604cb95654c57bfbd4ac5d530e6565d486423e556f
SHA512

ea4fa1e9847ce35d95ae3fb406e332652f8facc6fb908f63c87ef5bbe7e13d63e8d81f50bd01adac3195603b8819382a5275b7a92cf86238dda8aac22240e6ab
SSDEEP

3072:0TxcoTyzB+FqCNe7qmXFcEqs8y6d1gL0z:iFTyzQFqCiqmfVTA60

Score

N/A

Malware Config

Signatures

Files

65c6ddbdb00d1a76aaf4ad604cb95654c57bfbd4ac5d530e6565d486423e556f
.exe windows x86

a3b308690f3aadb3b65526eb3d3708f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateEventW
VirtualProtectEx
GetPrivateProfileIntW
OpenMutexA
GetCurrentProcess
HeapFree
LocalLock
DeleteFileA
CloseHandle
lstrlenA
FindVolumeClose
HeapDestroy
GetVersionExW
GetCurrentThread
GetDriveTypeA
DeviceIoControl
LoadLibraryA
GetPrivateProfileSectionA
GetStringTypeA
GetFileAttributesA
GetStdHandle

shell32

DragQueryFileA
SHGetSettings
ShellAboutA
SHFree
SHGetMalloc
ExtractIconA
DragFinish
SHGetMalloc
DllUnregisterServer
StrChrA
DragAcceptFiles
ShellMessageBoxA
DuplicateIcon

odbccp32

SQLInstallDriver
SQLConfigDataSource
SQLInstallODBC
SQLGetAvailableDrivers

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy