fccb278056c1a94b78de06af7cecb694a4881d103a2737fd239621f3f8e93bd6 | Triage

Submit
Reports

Overview

overview

8

Static

static

fccb278056...d6.exe

windows7-x64

8

fccb278056...d6.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fccb278056c1a94b78de06af7cecb694a4881d103a2737fd239621f3f8e93bd6.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fccb278056c1a94b78de06af7cecb694a4881d103a2737fd239621f3f8e93bd6.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fccb278056c1a94b78de06af7cecb694a4881d103a2737fd239621f3f8e93bd6
Size

803KB
MD5

6fb93eee390cff4341e451e26ec24bb0
SHA1

6bbb5e394f1b2cd44455d370cc9fad79cb23a213
SHA256

fccb278056c1a94b78de06af7cecb694a4881d103a2737fd239621f3f8e93bd6
SHA512

50f220080008f7da66ba166f06a905aad9251d4e88c20f531c8b3e75a12f35caeb856e6873891c014fd2528a19ba5200c27a6fcc06b9a2ade81b6b950a611c8a
SSDEEP

12288:KM0vIo2LAWvFVxyqVRevfk/1iexpYx2GAkTGOklC2D5YtkpcnoA5a0M3RUw:J08AWdV8qVR+fqYwGAkTGxEScoND

Score

N/A

Malware Config

Signatures

Files

fccb278056c1a94b78de06af7cecb694a4881d103a2737fd239621f3f8e93bd6
.exe windows x86

9e5b72283691c7edab0ed728f0646e02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
CreateFileW
SetFileTime
GetConsoleMode
SetFilePointer
FindAtomW
GetFileAttributesA
DeleteFileW
InterlockedExchange
GetDriveTypeW
GetModuleFileNameA
PulseEvent
CreateFileW
GetCurrentThreadId
OpenEventW
OpenMutexA
GetProcessVersion
GlobalFlags
CreateDirectoryA
LeaveCriticalSection
GetModuleHandleA
VirtualProtectEx
GetVolumePathNameA
DeleteFileW
GetTickCount

user32

DestroyMenu
DestroyIcon
GetWindowLongA
IsMenu
PeekMessageA
MessageBoxA
GetWindowLongA
GetWindowTextA
SetFocus
DispatchMessageA
wsprintfA
SetRect
LoadCursorA

dot3msm

Dot3MsmDisconnect
Dot3MsmFreeProfile
DllMain
Dot3MsmDeInit

advapi32

IsValidAcl

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 793KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy