a02560d96ab063c3c568da1a374e11b90d216df1983005ab789c1edfdcad92ab | Triage

Submit
Reports

Overview

overview

8

Static

static

a02560d96a...ab.exe

windows7-x64

8

a02560d96a...ab.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a02560d96ab063c3c568da1a374e11b90d216df1983005ab789c1edfdcad92ab.exe

Resource

win7-20220812-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a02560d96ab063c3c568da1a374e11b90d216df1983005ab789c1edfdcad92ab.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a02560d96ab063c3c568da1a374e11b90d216df1983005ab789c1edfdcad92ab
Size

197KB
MD5

6e1a4f5481053a2b38ea39dafb88425b
SHA1

304c5451437daf54c97e47093a070e217dd6fcb6
SHA256

a02560d96ab063c3c568da1a374e11b90d216df1983005ab789c1edfdcad92ab
SHA512

e5d7850d3192d5601f83a64b7dd1299dd1bfc6ba494f437790dc104aaa7bc3c34346b39fd15a56803c699b0b6ae6d16682a4904aa93a0ad3c25cd19f240cd708
SSDEEP

6144:fq5QVIRFY07hR5G4NkaZx2620BoaOL/oZ:fq5QNGPuaZx26t2A

Score

N/A

Malware Config

Signatures

Files

a02560d96ab063c3c568da1a374e11b90d216df1983005ab789c1edfdcad92ab
.exe windows x86

2aaea1298afdf2111359f0db9e5ff1fc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
QueryPerformanceCounter
GetVersionExA
SetPriorityClass
TerminateProcess
InterlockedCompareExchange
GetTempPathA
UnhandledExceptionFilter
VirtualProtect
HeapFree
GetSystemTimeAsFileTime
CreateProcessA
EnumResourceTypesA
RaiseException
InterlockedExchange
IsDebuggerPresent
GetCurrentProcess
GetLocaleInfoW
MulDiv
GetPrivateProfileIntA
HeapAlloc
GetThreadLocale
GetACP
SetUnhandledExceptionFilter
GetLocaleInfoA
GetTempFileNameA
GetCurrentProcessId
GetStartupInfoA
TlsFree

gdiplus

GdipGetImageWidth
GdipDisposeImage

ole32

CoMarshalHresult
CoInitialize
CoInitializeEx
StringFromCLSID
CreateItemMoniker
CoRegisterClassObject
StringFromGUID2
CoTaskMemFree
GetRunningObjectTable
CoUninitialize
CoRevokeClassObject
CoFreeUnusedLibraries
CoCreateInstance
CLSIDFromString
CreateStreamOnHGlobal
CoTaskMemAlloc

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy