ede68c09f86a8fa6df3109952a9da04e1672d8306d0271c433f226787cfa910b | Triage

Submit
Reports

Overview

overview

8

Static

static

ede68c09f8...0b.exe

windows7-x64

8

ede68c09f8...0b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ede68c09f86a8fa6df3109952a9da04e1672d8306d0271c433f226787cfa910b.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ede68c09f86a8fa6df3109952a9da04e1672d8306d0271c433f226787cfa910b.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

ede68c09f86a8fa6df3109952a9da04e1672d8306d0271c433f226787cfa910b
Size

153KB
MD5

669aeff529642a98817131b2ed963dfe
SHA1

5f440b6410cb71c8a644942dc17a01d445f182cd
SHA256

ede68c09f86a8fa6df3109952a9da04e1672d8306d0271c433f226787cfa910b
SHA512

df8b8ff3085d254c513b018b825a7e0f83ff8fd15efc8861eddd15d66461f60ef6fc77e8c13217e5c01c73ef4b5ff35de2f38f5e5a8633ee92b09492bf58e76c
SSDEEP

3072:o7+GebfZ+hKmTmZzLdLRziBv950ofo9gRsDrNau5ualw+TIz:1Tbxqm1PWv950YsaglweI

Score

N/A

Malware Config

Signatures

Files

ede68c09f86a8fa6df3109952a9da04e1672d8306d0271c433f226787cfa910b
.exe windows x86

b4dc8e7cf68a0ecbf0f6c0b227754c35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

PropertySheetW

shlwapi

SHGetValueW
PathAppendW
PathRemoveFileSpecW
PathCombineW
PathFileExistsW

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoCreateInstance
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
CoInitializeEx
CoInitialize

shell32

ShellExecuteW
SHFileOperationW
CommandLineToArgvW
SHGetFolderPathW
ShellExecuteExW

user32

SetWindowTextW
PostMessageW
DestroyWindow
SetWindowLongW
PostQuitMessage
GetFocus
IsWindowEnabled
GetDlgCtrlID
IsDlgButtonChecked
IsWindow
ReleaseDC
CreateCursor
LoadIconW
GetDC
MsgWaitForMultipleObjects

kernel32

FillConsoleOutputAttribute
GetFullPathNameW
GetProcessPriorityBoost
SearchPathW
EnumResourceNamesW
FreeEnvironmentStringsW
CompareFileTime
MoveFileW
GetShortPathNameW
SetFileTime

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy