daa9f08b746d6c33009eb232f64b3a0d2353c624d9a1f1039ffa082ed326c787 | Triage

Submit
Reports

Overview

overview

8

Static

static

daa9f08b74...87.exe

windows7-x64

8

daa9f08b74...87.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

daa9f08b746d6c33009eb232f64b3a0d2353c624d9a1f1039ffa082ed326c787.exe

Resource

win7-20220812-en

discovery evasion persistence spyware stealer trojan

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

daa9f08b746d6c33009eb232f64b3a0d2353c624d9a1f1039ffa082ed326c787.exe

Resource

win10v2004-20220901-en

persistence spyware stealer

windows10-2004-x64

11 signatures

150 seconds

General

Target

daa9f08b746d6c33009eb232f64b3a0d2353c624d9a1f1039ffa082ed326c787
Size

544KB
MD5

656d61004a82b56eb18bcbe83af8fb5a
SHA1

6edfcf624352d2ba741414f07b0c937b2382a77e
SHA256

daa9f08b746d6c33009eb232f64b3a0d2353c624d9a1f1039ffa082ed326c787
SHA512

834a6f338b7d4f33ddb9cfb980561fcee1f8c9d5122a7f6ff478e7dfe72ecf4b963422ace35600bce6f8410256a13346fe7e33f535fbb4f60bc6ee15364a4209
SSDEEP

12288:9HWeiXoeXGx2lEP/RVggDiUw6aogLNQ3FnKnxA2Yc5:NeXGN0gDe1oKW2

Score

N/A

Malware Config

Signatures

Files

daa9f08b746d6c33009eb232f64b3a0d2353c624d9a1f1039ffa082ed326c787
.exe windows x86

1e093edf8d1f0a8272104790c0e2b1ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetModuleHandleA
GetStartupInfoA

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
isdigit
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
strcat
_adjust_fdiv

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 500KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy