91b62734fa3a6629096110b56c47f27f371ffedd5d21ffdb4cf7b0e3c7059cd9 | Triage

Submit
Reports

Overview

overview

8

Static

static

91b62734fa...d9.exe

windows7-x64

8

91b62734fa...d9.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

91b62734fa3a6629096110b56c47f27f371ffedd5d21ffdb4cf7b0e3c7059cd9.exe

Resource

win7-20220812-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

91b62734fa3a6629096110b56c47f27f371ffedd5d21ffdb4cf7b0e3c7059cd9.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

91b62734fa3a6629096110b56c47f27f371ffedd5d21ffdb4cf7b0e3c7059cd9
Size

194KB
MD5

5723381be9d8856c38122314b1a9137f
SHA1

dbbc43929147847f0deb7c4cecae659e9b7d6d78
SHA256

91b62734fa3a6629096110b56c47f27f371ffedd5d21ffdb4cf7b0e3c7059cd9
SHA512

b38f6a644e083dec3cf07942a904829dd910c8753711eef919ed80e54458cb28256cebef7d6f48ade0be34703454dcd8e3f7bb69e104a2918b5ce381bc552de4
SSDEEP

3072:YPSV82cbMFCxhNWN6Z+H4okr5JvwOkDJPA/9ihhhyKbDvJI0Dzi1fIm4:YQH5o26Z647r5JiDlA/9meKb7P3i1ft

Score

N/A

Malware Config

Signatures

Files

91b62734fa3a6629096110b56c47f27f371ffedd5d21ffdb4cf7b0e3c7059cd9
.exe windows x86

5b1c446b4e18f1f850fe566abe22403b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
QueryPerformanceCounter
GetEnvironmentVariableA
MultiByteToWideChar
VirtualQueryEx
GetCurrentThreadId
GetCurrentProcessId
GetModuleHandleA
GetACP
WideCharToMultiByte
SetUnhandledExceptionFilter
GetStartupInfoA
InterlockedCompareExchange
UnhandledExceptionFilter
LocalAlloc
EnumResourceNamesW
GetSystemTimeAsFileTime
FindResourceExW
Sleep
GetCurrentProcess
InterlockedExchange
GetLocaleInfoA
lstrlenA
RaiseException
lstrlenW
ExitProcess
IsDebuggerPresent
CreateProcessA
GetThreadLocale

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegSetValueExA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

ole32

StringFromIID
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy