48af21ff3cd3aa6d888a1814e38a1c732d33413a4158c53913228a0e6a2733fc | Triage

Submit
Reports

Overview

overview

8

Static

static

48af21ff3c...fc.exe

windows7-x64

8

48af21ff3c...fc.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

48af21ff3cd3aa6d888a1814e38a1c732d33413a4158c53913228a0e6a2733fc.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

48af21ff3cd3aa6d888a1814e38a1c732d33413a4158c53913228a0e6a2733fc.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

48af21ff3cd3aa6d888a1814e38a1c732d33413a4158c53913228a0e6a2733fc
Size

183KB
MD5

6771e0db3f1b4f2eb52c08a2b6e754d6
SHA1

e2e17abe8d4166123c5ffb927eee31171918381b
SHA256

48af21ff3cd3aa6d888a1814e38a1c732d33413a4158c53913228a0e6a2733fc
SHA512

8e922601307baa328bc3a3cb150ec4f234c83098eb6fe57ed7ea747c6f3db9c4b78e3d8bcdbfc379b3971a528bab8e9504078dc8295424977863bb8870436c7e
SSDEEP

3072:8GawMsBXm4JmC3yWvuF7yp4HCSSShU8E6lpvKePBHXxP77G6IA/bd80z7c:u6bJmCTvA7yCL7hQoF7BHJ7nff

Score

N/A

Malware Config

Signatures

Files

48af21ff3cd3aa6d888a1814e38a1c732d33413a4158c53913228a0e6a2733fc
.exe windows x86

4a92b521f5e750728ac96fa2198ce5f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

NdrFixedArrayFree
UuidCreate

kernel32

VirtualAllocEx
CreateProcessA
LocalAlloc
WideCharToMultiByte
EnumResourceNamesA
MultiByteToWideChar
GetSystemTimeAsFileTime
RaiseException
OpenSemaphoreW
lstrlenA
InterlockedExchange

shlwapi

PathFileExistsW

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

advapi32

RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy