537acd5f3b983ec6d43c9b31fe5e7463a33f8edad5781cfd7ead9e7d2536062b | Triage

Submit
Reports

Overview

overview

Static

static

537acd5f3b...2b.exe

windows7-x64

537acd5f3b...2b.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

537acd5f3b983ec6d43c9b31fe5e7463a33f8edad5781cfd7ead9e7d2536062b.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

537acd5f3b983ec6d43c9b31fe5e7463a33f8edad5781cfd7ead9e7d2536062b.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

537acd5f3b983ec6d43c9b31fe5e7463a33f8edad5781cfd7ead9e7d2536062b
Size

126KB
MD5

4b3cef429792f958bdc33da7aa89e870
SHA1

7e27f12042d93cfc9cf5e76c2b6cb6560d8c565d
SHA256

537acd5f3b983ec6d43c9b31fe5e7463a33f8edad5781cfd7ead9e7d2536062b
SHA512

2e0ae9f42b129b1bd07004c566c6c4cdfebb0450b4a95bf6ae1adf06660b2834df23b5972d5b99645c512cb20a4205a7419a265e666aa87f88d3a331fe2d375e
SSDEEP

3072:COJvDnOalAWCWn1Nev19SuClzkbP1jDhqfeKZfO:hviVWD1899SudNjDhq2KZf

Score

N/A

Malware Config

Signatures

Files

537acd5f3b983ec6d43c9b31fe5e7463a33f8edad5781cfd7ead9e7d2536062b
.exe windows x86

9727be8a177ccca8ea9e8c968cba6272

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThread
DeleteFileA
DeviceIoControl
GetFileAttributesA
GetCurrentProcess
GetPrivateProfileIntW
FindVolumeClose
GetStdHandle
LoadLibraryA
HeapFree
HeapDestroy
DeviceIoControl
GetDriveTypeA
CloseHandle
CreateEventW
GetPrivateProfileSectionA
OpenMutexA
GetStringTypeA
LocalLock
lstrlenA
VirtualProtectEx

uxtheme

SetWindowTheme
IsThemeActive
OpenThemeData
DrawThemeBackground
GetThemeTextMetrics
GetThemeColor
CloseThemeData
GetThemeSysSize
GetWindowTheme
DrawThemeEdge
GetThemeBool
GetThemeTextExtent
CloseThemeData

odbccp32

SQLGetAvailableDrivers
SQLConfigDataSource
SQLInstallODBC
SQLInstallDriver

msasn1

ASN1BERDecBool

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy