bb875550f3816fb2c0486c79f3454ac55f84752f55457da9ecfcde71e2e2d596 | Triage

Submit
Reports

Overview

overview

8

Static

static

bb875550f3...96.exe

windows7-x64

8

bb875550f3...96.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bb875550f3816fb2c0486c79f3454ac55f84752f55457da9ecfcde71e2e2d596.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

bb875550f3816fb2c0486c79f3454ac55f84752f55457da9ecfcde71e2e2d596.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

bb875550f3816fb2c0486c79f3454ac55f84752f55457da9ecfcde71e2e2d596
Size

796KB
MD5

01579f0ef3cac6ecf4dc41f840168816
SHA1

38270f5abff527d53b50f34fc9e43e9915384f97
SHA256

bb875550f3816fb2c0486c79f3454ac55f84752f55457da9ecfcde71e2e2d596
SHA512

22bd8ba2f71f696d417266b55474b220b309055621c1a71516f9235b5e0beebfb6cd1f5b4a8837e54ded17203c12742e150dbed9b359eb5342715e2dd43971bc
SSDEEP

24576:EWc160ymu5eZ0vVHOa8CN5wifX/XYTfuD/g4:k60ymu5eOIa8CPJfPzTg

Score

N/A

Malware Config

Signatures

Files

bb875550f3816fb2c0486c79f3454ac55f84752f55457da9ecfcde71e2e2d596
.exe windows x86

c597b7010f3a336be68a6b773c294634

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapFree
LocalFlags
SetCommBreak
CreateDirectoryW
GetFileAttributesW
RemoveDirectoryW
DeviceIoControl
GetFileAttributesW
SetLastError
GetCurrentThread
GlobalLock
CreateEventA
GetModuleHandleA
GetStringTypeA
GetPrivateProfileIntA
FindClose
GetPrivateProfileSectionA
GetVersionExA
GetCurrentProcess
CloseHandle
VirtualProtectEx

user32

LoadCursorW
DispatchMessageA
PeekMessageW
FindWindowW
PostMessageW
SetFocus
GetWindowLongW
wsprintfW
IsDialogMessageA
IsWindow
SetCursorPos
GetWindowTextW
IsZoomed

mswsock

GetServiceA
getnetbyname
GetAddressByNameA
GetNameByTypeA

ntshrui

IsPathSharedA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 699KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy