3b36c60920ee42b4e7ff9adfc5b62ee03d7f93c217cd942d7fecfcd2271cca7c | Triage

Submit
Reports

Overview

overview

8

Static

static

3b36c60920...7c.exe

windows7-x64

8

3b36c60920...7c.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3b36c60920ee42b4e7ff9adfc5b62ee03d7f93c217cd942d7fecfcd2271cca7c.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b36c60920ee42b4e7ff9adfc5b62ee03d7f93c217cd942d7fecfcd2271cca7c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3b36c60920ee42b4e7ff9adfc5b62ee03d7f93c217cd942d7fecfcd2271cca7c
Size

194KB
MD5

7031b2fed5478093e7685330fc853a8c
SHA1

59aad1756784617d6d0c004cbf26fbaa43f29a7a
SHA256

3b36c60920ee42b4e7ff9adfc5b62ee03d7f93c217cd942d7fecfcd2271cca7c
SHA512

fa2ec10b76791218fb49bf0568ca6196668126bf5a72c9c66f5e9a7529cc1a90dcbaff985df1a67e84e961d5c6860e449e77264a69240efead63247d8a3cce8f
SSDEEP

3072:57a0Oo6pOe26mYRuKmDu96brrYW45nHyW76ZHw4vqNVcZvp/8LaKR:5dOhOe2efDkbH+9H3eZzR/8LaY

Score

N/A

Malware Config

Signatures

Files

3b36c60920ee42b4e7ff9adfc5b62ee03d7f93c217cd942d7fecfcd2271cca7c
.exe windows x86

669b0f02bae124fd35541d203e5fe010

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

StringFromIID
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

advapi32

RegOpenKeyA
RegCreateKeyExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA
RegSetValueExA

kernel32

VirtualQueryEx
RaiseException
UnhandledExceptionFilter
CreateProcessA
GetCurrentProcess
GetEnvironmentVariableA
GetCurrentProcessId
GetStartupInfoA
lstrlenW
QueryPerformanceCounter
LocalAlloc
Sleep
GetTickCount
EnumResourceNamesW
GetModuleHandleA
WideCharToMultiByte
GetACP
ExitProcess
GetSystemTimeAsFileTime
InterlockedExchange
FindResourceExW
IsDebuggerPresent
InterlockedCompareExchange
MultiByteToWideChar
GetLocaleInfoA
lstrlenA
SetUnhandledExceptionFilter
GetCurrentThreadId
GetThreadLocale

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy