0cb41d0cbc9a63f60dc028fae238dfc7ad9918d9e39b886e11116f5cb7cd2c87 | Triage

Submit
Reports

Overview

overview

Static

static

0cb41d0cbc...87.exe

windows7-x64

0cb41d0cbc...87.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0cb41d0cbc9a63f60dc028fae238dfc7ad9918d9e39b886e11116f5cb7cd2c87.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

0cb41d0cbc9a63f60dc028fae238dfc7ad9918d9e39b886e11116f5cb7cd2c87.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

0cb41d0cbc9a63f60dc028fae238dfc7ad9918d9e39b886e11116f5cb7cd2c87
Size

118KB
MD5

63d8178bff4ae0ba7627d19fde92eb00
SHA1

1d16aac84550e70ce708004939fc41dede0fada7
SHA256

0cb41d0cbc9a63f60dc028fae238dfc7ad9918d9e39b886e11116f5cb7cd2c87
SHA512

8f14162bdc766f1ff612fff4f4e80a6fe81b64d2d68d97cf8055b473e796f9f8a437ace6b6a6cdd93ab4daa4f86e8d74b3dcafa52026e7b2ec8109e41f939107
SSDEEP

1536:r2a5W+VmGIpkqCgQ3Lnbuj5ggcAUazYplg2n4JqVkEczxRchQ31yLERhE2HO9ph:qa5vmGIpogS0ggdylthVfVMyERhy

Score

N/A

Malware Config

Signatures

Files

0cb41d0cbc9a63f60dc028fae238dfc7ad9918d9e39b886e11116f5cb7cd2c87
.exe windows x86

afc570151c82b8e5015f441c1faed2a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPriorityClass
GetCommandLineA
CreatePipe
GetLocaleInfoA
SuspendThread
GetStdHandle
DeleteFileA
GetFileAttributesA
GetProcessHeap
IsBadReadPtr
GetDriveTypeA
CreateDirectoryA
ResumeThread
HeapSize
WriteFile
ResumeThread
GlobalSize
SetLocalTime
ReadConsoleW
GetModuleHandleA
VirtualProtect

user32

DispatchMessageA
DestroyMenu
GetWindowTextW
PeekMessageA
GetMessageW
SetFocus
GetCapture
SetCursor
GetCaretPos
LoadCursorA
GetWindowLongW
DrawIcon
wsprintfA

els

DllRegisterServer
DllGetClassObject
DllGetClassObject
DllRegisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy