1539fa11a50cf5e8a69c3423e28369ed56ac877ad8202316af49a35e5a7e72df | Triage

Submit
Reports

Overview

overview

8

Static

static

1539fa11a5...df.exe

windows7-x64

8

1539fa11a5...df.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1539fa11a50cf5e8a69c3423e28369ed56ac877ad8202316af49a35e5a7e72df.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

1539fa11a50cf5e8a69c3423e28369ed56ac877ad8202316af49a35e5a7e72df.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

1539fa11a50cf5e8a69c3423e28369ed56ac877ad8202316af49a35e5a7e72df
Size

830KB
MD5

7240177dd415c46cebb0062df3294a60
SHA1

f923a4c6d5136e40c1f833fdd38eff99b34af191
SHA256

1539fa11a50cf5e8a69c3423e28369ed56ac877ad8202316af49a35e5a7e72df
SHA512

0de0d5e9e38ce0745acad27c7a22c731087ed3ca4143b1a91ce8e5e1c7e3159c74d18d8f95b8e942d45cb45cfc3d25ae89147964290331b9d78c7eaab67d63be
SSDEEP

12288:+OU2Bjq2AAOs0o9tNGsxJMXWE1qkWbslk3i8u9jQPPPstgL6wjfRoM:tPp/AG0oPvJ8MkMsW8jQHPoK6ORoM

Score

N/A

Malware Config

Signatures

Files

1539fa11a50cf5e8a69c3423e28369ed56ac877ad8202316af49a35e5a7e72df
.exe windows x86

983750802690ac1dbe82b815bb864d32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameA
GetLocaleInfoA
SetEvent
GetModuleHandleA
GetConsoleTitleA
WaitForSingleObject
EnumCalendarInfoW
FindNextFileA
GetCurrentThread
GetDiskFreeSpaceA
LeaveCriticalSection
GetTickCount
MoveFileExA
CreateSemaphoreW
VirtualAllocEx
GetNumberFormatW
FindResourceW

dmdskmgr

DllGetClassObject
DllCanUnloadNow
LoadPropertyPageData
?CompareDiskNames@@YGHJJ@Z

Sections

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.EDATA
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy