49137c15d532c02e4d1bbb4aff1ca85e5049e95ae0af4c7265aa33f8e46e96d9 | Triage

Submit
Reports

Overview

overview

Static

static

49137c15d5...d9.exe

windows7-x64

49137c15d5...d9.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

49137c15d532c02e4d1bbb4aff1ca85e5049e95ae0af4c7265aa33f8e46e96d9.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

49137c15d532c02e4d1bbb4aff1ca85e5049e95ae0af4c7265aa33f8e46e96d9.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer upx

windows10-2004-x64

13 signatures

150 seconds

General

Target

49137c15d532c02e4d1bbb4aff1ca85e5049e95ae0af4c7265aa33f8e46e96d9
Size

95KB
MD5

6f7f6f1d68ccc1d3fb419ae86fc68460
SHA1

e2e5eceb90605a03216c5af9dc79c54b449089fa
SHA256

49137c15d532c02e4d1bbb4aff1ca85e5049e95ae0af4c7265aa33f8e46e96d9
SHA512

d6aa4a56b381ae73d6099aa7a3e71d745b00129a2e20f528e18b481ca3858c136e8cb2291e7be9ffcad2dd4c8ada1efc1b63e992b8f736a6d015053fcd7d46e1
SSDEEP

1536:vtViwkZiuAidkprj+REOWqFCC7bgRCFQsv+p6RVk0iuZnTwyI:vtMJAbpH+zWGCibgtIhQuZnTw

Score

N/A

Malware Config

Signatures

Files

49137c15d532c02e4d1bbb4aff1ca85e5049e95ae0af4c7265aa33f8e46e96d9
.exe windows x86

f66a75045ed4c2f9534c9f36620319cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrIA
StrChrIW
UrlGetPartA
StrCmpIW
UrlIsOpaqueA
PathIsFileSpecW
PathMakePrettyW
StrToIntA

kernel32

GetCurrentDirectoryW

user32

GetClassLongW
GetMessagePos
IsCharUpperW
GetCaretPos
IsDlgButtonChecked
GetForegroundWindow

Exports

Exports

?GdiOutput@@YGXUverifyEw@CA7
?LockingPick@@YGXUverifyEw@CA7

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.call
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fame
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wpe
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.same
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy