ce66711f2b3f7f75705695f27528572a4c68b17368b188aec10c9c69a8a01e62 | Triage

Submit
Reports

Overview

overview

Static

static

ce66711f2b...62.exe

windows7-x64

ce66711f2b...62.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ce66711f2b3f7f75705695f27528572a4c68b17368b188aec10c9c69a8a01e62.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

ce66711f2b3f7f75705695f27528572a4c68b17368b188aec10c9c69a8a01e62.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ce66711f2b3f7f75705695f27528572a4c68b17368b188aec10c9c69a8a01e62
Size

118KB
MD5

2b1d2526c824d8a896c33a7738622e6a
SHA1

093b7184e6f15f5dd4ca0c738ed1b10c1ddbfd2e
SHA256

ce66711f2b3f7f75705695f27528572a4c68b17368b188aec10c9c69a8a01e62
SHA512

424ad23c019fe1df665d107468b154beebffb141e37e266be5e4bef92e32d7daf430b81096d85e262b0a2fbf742d3374a4b063af3bada74d17f6b7dad09b2e58
SSDEEP

3072:KimfP7ifbAVktd0TnqvxVqhYktq0K5bsHhwZvHK6uDSf16Lp1LGCUX2/SRXo95:Kjqfqu91sHhwZd6xXGz2/eXq5

Score

N/A

Malware Config

Signatures

Files

ce66711f2b3f7f75705695f27528572a4c68b17368b188aec10c9c69a8a01e62
.exe windows x86

ea4a51b5a6037c30cb6b2c51921c56ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryA
InitializeCriticalSection
CreateMutexW
SetFileTime
IsBadWritePtr
GetLastError
GetStartupInfoW
LeaveCriticalSection
lstrcatA
SetFileTime
ReadFile
HeapCreate
SetFileTime
FindResourceW
lstrcpyA
CreatePipe
CloseHandle
GetFileSize
FormatMessageW
GetModuleHandleA
GetExitCodeProcess

mstscax

DllUnregisterServer
DllCanUnloadNow
DllGetClassObject
DllRegisterServer

user32

SetFocus
IsWindow
GetWindowTextA
IsDialogMessageA
MessageBoxA
GetWindowRect
PostMessageA
DispatchMessageA
GetWindowLongW
wsprintfA
PostMessageW
PeekMessageW
LoadCursorW

clbcatq

SetSetupSave

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 193B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ole
Size: 512B - Virtual size: 112B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy