f69d3fd07f37ac7caa388e239328797b81e6de56991c520ba61e5de14d26aa58 | Triage

Submit
Reports

Overview

overview

Static

static

f69d3fd07f...58.exe

windows7-x64

f69d3fd07f...58.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f69d3fd07f37ac7caa388e239328797b81e6de56991c520ba61e5de14d26aa58.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f69d3fd07f37ac7caa388e239328797b81e6de56991c520ba61e5de14d26aa58.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f69d3fd07f37ac7caa388e239328797b81e6de56991c520ba61e5de14d26aa58
Size

177KB
MD5

6f86c1f726ca6be199e43ded30837191
SHA1

34cf3a44f6ef5b3b1b4c50873b5475df3c41f9d0
SHA256

f69d3fd07f37ac7caa388e239328797b81e6de56991c520ba61e5de14d26aa58
SHA512

a83bfcb37dbe1fd4837deb239c5a1ea32bf4e1ad5448bf5c0d030f161084052e7e3f3f8ee30d5bbbde5fd2ab65383750550c09ca18fed62fb417cdd3fc7c1bb4
SSDEEP

3072:j14PNJexKdqT+pc5jhqVdFqSOBVpSAJCKNXRG/XfDGTnyQ0L:jGVMTFhedFqpbSaK/vyTyNL

Score

N/A

Malware Config

Signatures

Files

f69d3fd07f37ac7caa388e239328797b81e6de56991c520ba61e5de14d26aa58
.exe windows x86

a7d7fcca47493fe7906885bfc6dfa0ee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextExtentPointA
SelectObject
GetDeviceCaps
GetTextMetricsA
DeleteObject
CreateFontIndirectA

ole32

CoGetMalloc
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc

kernel32

RaiseException
GetCPInfoExA
InterlockedIncrement
SetHandleCount
GetOEMCP
MultiByteToWideChar
GetLocaleInfoA
WideCharToMultiByte
lstrlenW
EnterCriticalSection
InterlockedExchange
GetACP
QueryPerformanceCounter
GetStartupInfoA
EnumResourceTypesA
GetEnvironmentStrings
GetVersionExA
WriteFile
FreeEnvironmentStringsA
GetFileType
TlsSetValue
GetThreadLocale
LeaveCriticalSection
DeleteCriticalSection
LoadLibraryW
InitializeCriticalSection
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetLastError
TlsGetValue
GetTickCount
GetCPInfo
GetStdHandle
GetEnvironmentStringsW
GetCurrentProcessId

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy