ceefe47cc7d66cfb993335e4d52a8909e3e3c67329fa6f3da049eca4f7c4b5a3 | Triage

Submit
Reports

Overview

overview

8

Static

static

ceefe47cc7...a3.exe

windows7-x64

8

ceefe47cc7...a3.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ceefe47cc7d66cfb993335e4d52a8909e3e3c67329fa6f3da049eca4f7c4b5a3.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ceefe47cc7d66cfb993335e4d52a8909e3e3c67329fa6f3da049eca4f7c4b5a3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ceefe47cc7d66cfb993335e4d52a8909e3e3c67329fa6f3da049eca4f7c4b5a3
Size

832KB
MD5

47dc5dfb8b159d3d713ff21ed0873671
SHA1

04c5f2b5ac6f2e72708bd8a44b05740e47df127b
SHA256

ceefe47cc7d66cfb993335e4d52a8909e3e3c67329fa6f3da049eca4f7c4b5a3
SHA512

0013b17095a705ea1623faf9aa4c5ab508e8dfc41d87092d958225ee70a0014a822d753ef42d4c2601a0cf8ffbb6a312fcab642a441b70b8887b4a176b8492fc
SSDEEP

24576:LbMuM58YGXrTOrIix5OqOWABMYAHejRzW:YSXrTDy5OtB9AHepW

Score

N/A

Malware Config

Signatures

Files

ceefe47cc7d66cfb993335e4d52a8909e3e3c67329fa6f3da049eca4f7c4b5a3
.exe windows x86

25c4a67f31bb163b02b34a113e76d7ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetFileAttributesA
GetBinaryTypeW
ReadConsoleA
GetDiskFreeSpaceW
GetEnvironmentStringsW
GetModuleHandleA
HeapAlloc
CreateDirectoryA
HeapCreate
CopyFileA
CreateFileMappingA
FreeEnvironmentStringsA
WriteConsoleA
CopyFileA
SearchPathW
GetDriveTypeA

msdtcprx

DTC_XaPrepare
DTC_XaOpen
DTC_XaEnd
DTC_XaStart

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy