58850268bff9639579bec2bf0b3671a8abc41182706a6f1608fb3f7213db8072 | Triage

Submit
Reports

Overview

overview

Static

static

58850268bf...72.exe

windows7-x64

58850268bf...72.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

58850268bff9639579bec2bf0b3671a8abc41182706a6f1608fb3f7213db8072.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

58850268bff9639579bec2bf0b3671a8abc41182706a6f1608fb3f7213db8072.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

58850268bff9639579bec2bf0b3671a8abc41182706a6f1608fb3f7213db8072
Size

123KB
MD5

66a00999048400d6cad08a727289c750
SHA1

2e97827e51f577d85d7faffc6267d1fceff18b39
SHA256

58850268bff9639579bec2bf0b3671a8abc41182706a6f1608fb3f7213db8072
SHA512

39ce77953de167355cb04f7cb43965cb465225e03dd7f7a3f664c25ad33318fae7c6483776980a5940649ba03ace23fbd697a713e7d513540647b0ed87fd235f
SSDEEP

3072:XhaVOOlL1N9NEBCnqw8BPpFD/bMQhdcR2eVTnvFbTr:RZ8BNLXtyJMQhoVh

Score

N/A

Malware Config

Signatures

Files

58850268bff9639579bec2bf0b3671a8abc41182706a6f1608fb3f7213db8072
.exe windows x86

3331b9f158ebb5d352b24e5252571862

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapSize
GetLocaleInfoA
GetCurrentThreadId
VirtualProtect
GetProcessHeap
CreateDirectoryA
GetPriorityClass
GetModuleFileNameA
GetVersionExA
GlobalSize
IsBadReadPtr
GetStdHandle
SuspendThread
GetFileAttributesW
GetPrivateProfileSectionA
HeapDestroy
GetModuleHandleA
IsValidLocale
CreatePipe
GetPrivateProfileIntA
CreateMutexW
lstrlenA
ResumeThread
SetEvent
SetFilePointer

user32

PeekMessageA
GetWindowLongA
DestroyMenu
SetRect
DestroyIcon
SetCursor
wsprintfA
DrawIcon
GetScrollInfo
GetWindowTextW
LoadCursorA
DispatchMessageA
GetWindowLongA

duser

GetGadgetRect
GetGadget
GetGadgetFocus
GetDebug

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy