512083074410be07ab50a5f118ccf475c8f5d3c6e882681ebf324499db7b43cd | Triage

Submit
Reports

Overview

overview

Static

static

5120830744...cd.exe

windows7-x64

5120830744...cd.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

512083074410be07ab50a5f118ccf475c8f5d3c6e882681ebf324499db7b43cd.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

512083074410be07ab50a5f118ccf475c8f5d3c6e882681ebf324499db7b43cd.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

512083074410be07ab50a5f118ccf475c8f5d3c6e882681ebf324499db7b43cd
Size

108KB
MD5

65151feda5cdb1674c413756cb773437
SHA1

d8ff02d29cb7ad223853913fd1723ad64df19104
SHA256

512083074410be07ab50a5f118ccf475c8f5d3c6e882681ebf324499db7b43cd
SHA512

671a6ac41ba0452cd80d41eecf0969c3bed6af2e52562f45989bbdf7e6ebd283cb9f965d34ef2f87cfde5acb0f3f3050382a6121bf94308fe9f57b05f262cf35
SSDEEP

1536:/+8RcKv15cgB3WzN+aZz4WzwWJSfHn1b5rCFbN5kWMz7/aS52QsTz81dHnv:/+GcgBgrZcWErvn1bhUO1zTr52QsT4D

Score

N/A

Malware Config

Signatures

Files

512083074410be07ab50a5f118ccf475c8f5d3c6e882681ebf324499db7b43cd
.exe windows x86

978c680dc3e34393a192ff576130a2c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDriveTypeA
ReadConsoleA
CloseHandle
ReadConsoleA
ReadConsoleA
GetStartupInfoA
TlsGetValue
LoadLibraryW
GetLastError
GetLogicalDrives
FindAtomW
GetStringTypeW
DeleteFileW
SearchPathW
PulseEvent
GetPrivateProfileSectionA
Sleep
HeapSize
lstrlenA
ReleaseMutex
VirtualProtectEx

dsprop

MsgBox
FindSheet
FindSheet
CheckADsError
CheckADsError
FindSheet
ErrMsg
ErrMsg
ReportError
MsgBox
MsgBox
ReportError
ErrMsg

gpedit

DllGetClassObject
BrowseForGPO
DllCanUnloadNow
ExportRSoPData

Sections

.text
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 704B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 266B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 73B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy