ffbff9f25a1eead377cb84889adec06e5f4f6afed964abfc9270bf33b5a6b3d6 | Triage

Submit
Reports

Overview

overview

Static

static

ffbff9f25a...d6.exe

windows7-x64

ffbff9f25a...d6.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ffbff9f25a1eead377cb84889adec06e5f4f6afed964abfc9270bf33b5a6b3d6.exe

Resource

win7-20220812-en

evasion persistence ransomware spyware stealer trojan

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

ffbff9f25a1eead377cb84889adec06e5f4f6afed964abfc9270bf33b5a6b3d6.exe

Resource

win10v2004-20220812-en

evasion persistence spyware stealer trojan

windows10-2004-x64

16 signatures

150 seconds

General

Target

ffbff9f25a1eead377cb84889adec06e5f4f6afed964abfc9270bf33b5a6b3d6
Size

438KB
MD5

78f393300d072ca3ebbbd6ff2dd97fe0
SHA1

689e3ae03ce4c61953f9f640b41a7c5d1f47c1ce
SHA256

ffbff9f25a1eead377cb84889adec06e5f4f6afed964abfc9270bf33b5a6b3d6
SHA512

ceea36e6400ae5171edea3d74fd24da123fdd4b639217ae9a33bda6cb22628e795629b68d0429f76146c92458873bf300cbf4e07bb5befd453b340a109d02cfb
SSDEEP

12288:9xHveqc7KF303JpBV0bpbK34dcqikhWZaHOioUByQP:TeqGKFU0bpO3JkhojiR

Score

N/A

Malware Config

Signatures

Files

ffbff9f25a1eead377cb84889adec06e5f4f6afed964abfc9270bf33b5a6b3d6
.exe windows x86

f7e9d8c36401637f8e16480ada32a776

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ExitWindowsEx
GetMenuCheckMarkDimensions
GetShellWindow

advapi32

GetSecurityDescriptorOwner

kernel32

GetSystemDefaultLCID

Sections

.text
Size: 431KB - Virtual size: 432KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy