f1ed64b7b6cdfb765636b7b74e330ba472da36db170ede96272a989533d4d404 | Triage

Submit
Reports

Overview

overview

Static

static

f1ed64b7b6...04.exe

windows7-x64

f1ed64b7b6...04.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f1ed64b7b6cdfb765636b7b74e330ba472da36db170ede96272a989533d4d404.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

f1ed64b7b6cdfb765636b7b74e330ba472da36db170ede96272a989533d4d404.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f1ed64b7b6cdfb765636b7b74e330ba472da36db170ede96272a989533d4d404
Size

132KB
MD5

62cf78dd6c7696f68b30154ba3383980
SHA1

520b50b3e27ca1c6174267a89bec6a8998d6bccb
SHA256

f1ed64b7b6cdfb765636b7b74e330ba472da36db170ede96272a989533d4d404
SHA512

6f6bd4989b9abe9d92d0d9bb0808bb48bb1afb1cd126cf0f6dbdc4a6f2a028fda60de3004348f2a17ff80c23b290a80664f423d30eda62c8c6fc99e4a9fb2363
SSDEEP

3072:vkhPq4wLH98YBAvW7H87DtjIuG4CXcGtVok8LVYj4uS98hrT9:A87+YBWW7QDtjI1VXchLVYj4uSS

Score

N/A

Malware Config

Signatures

Files

f1ed64b7b6cdfb765636b7b74e330ba472da36db170ede96272a989533d4d404
.exe windows x86

c562f0e7b7948775d47448819e794c0f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapFree
GetFileAttributesW
GetModuleHandleA
CreateEventA
GetExitCodeThread
GetCurrentProcess
TlsGetValue
IsValidCodePage
GetFileAttributesW
GetStringTypeA
LocalFlags
SetLastError
RemoveDirectoryW
VirtualProtectEx
GlobalLock
GetCurrentThread
FindClose
GetLocaleInfoW
GetVersionExA
CreateDirectoryW
GetPrivateProfileSectionA

user32

GetWindowLongW
SetCursorPos
IsWindow
DefDlgProcA
PostMessageW
IsDialogMessageA
wsprintfW
LoadCursorA
SetCursor
PeekMessageW
DispatchMessageA
GetWindowTextW
SetFocus

msdtcprx

DTC_XaStart
DTC_XaOpen
DTC_XaCommit
DTC_XaEnd

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy