a2806e0d512e3de9e9886d77a089b652f0d0e2a6e733608d1f6ef4779306f4c4 | Triage

Submit
Reports

Overview

overview

8

Static

static

a2806e0d51...c4.exe

windows7-x64

8

a2806e0d51...c4.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a2806e0d512e3de9e9886d77a089b652f0d0e2a6e733608d1f6ef4779306f4c4.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

a2806e0d512e3de9e9886d77a089b652f0d0e2a6e733608d1f6ef4779306f4c4.exe

Resource

win10v2004-20220901-en

discovery persistence spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

General

Target

a2806e0d512e3de9e9886d77a089b652f0d0e2a6e733608d1f6ef4779306f4c4
Size

822KB
MD5

664a6d1b204021fe63e320fa5a4f9048
SHA1

72392b5d9a274a9ea278fe9e991d12b63e6fe7be
SHA256

a2806e0d512e3de9e9886d77a089b652f0d0e2a6e733608d1f6ef4779306f4c4
SHA512

89aefb3fb72eaa38b3ee9d1e7ab52a1eae5ac45bbe14e896655a5e4c6c9d7b1d5f540e2c3cfe8ca7caa47c83201ada9d8078124ba95975fb241762f07673cf1a
SSDEEP

24576:X0wo/0VYUuXx/W+Aua893bjZUctXVUtH/64o76:BocluB/xAuPxb1V+f6

Score

N/A

Malware Config

Signatures

Files

a2806e0d512e3de9e9886d77a089b652f0d0e2a6e733608d1f6ef4779306f4c4
.exe windows x86

bb7c404bc54e419b17fb5f444f66e1e9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
GetCurrentProcessId
GetSystemTime
lstrcpynA
lstrcpynA
lstrcmpW
GetFileType
GetModuleHandleA
GetLocalTime
GetLastError
lstrcpynA
VirtualProtectEx
lstrcpynA
GetVolumeInformationA
lstrcpynA
ReadConsoleA
GetEnvironmentVariableA
GetDiskFreeSpaceW
CompareStringA
lstrcpynA
GetPrivateProfileIntA
lstrcpynA
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
WriteFile
lstrcpynA
GetTimeFormatA
VirtualFree

d3d8

Direct3DCreate8
ValidatePixelShader
ValidateVertexShader
DebugSetMute

Sections

.text
Size: 19KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 798KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy