44c02f725b52ba55ff6f8cc9a248e866d366dd3f31a84b693fc7ffcbe81b9386 | Triage

Submit
Reports

Overview

overview

Static

static

44c02f725b...86.exe

windows7-x64

44c02f725b...86.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

44c02f725b52ba55ff6f8cc9a248e866d366dd3f31a84b693fc7ffcbe81b9386.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

44c02f725b52ba55ff6f8cc9a248e866d366dd3f31a84b693fc7ffcbe81b9386.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

44c02f725b52ba55ff6f8cc9a248e866d366dd3f31a84b693fc7ffcbe81b9386
Size

126KB
MD5

56cacf786e8a6b482fd10b697ba17830
SHA1

bf6a6a6602ddac657063de147f7c994e92583df8
SHA256

44c02f725b52ba55ff6f8cc9a248e866d366dd3f31a84b693fc7ffcbe81b9386
SHA512

ef9fcd0b7ec27ce12d46586018d410bd520bd4a9693aa487e7db5ba0b7d6f16393b0610a5f99a45d1d15688648d210086ab80dd6321c9778358624fe34d7b2d2
SSDEEP

1536:gSPI2BsZ3+W5mGmOS+57QGo5hKRrpBdzYbIiGGEPhT6ldeiZUVmbg82gRcqZ529:goC5S+VQG2K3iGil0ekqsscM529

Score

N/A

Malware Config

Signatures

Files

44c02f725b52ba55ff6f8cc9a248e866d366dd3f31a84b693fc7ffcbe81b9386
.exe windows x86

e352ed77cac382899ab4578f759e5223

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapFree
FindClose
CreateDirectoryW
GetCurrentThread
GetPrivateProfileSectionA
GetExitCodeThread
TlsGetValue
GetLocaleInfoW
GetCurrentProcess
GetFileAttributesW
GetVersionExA
GetModuleHandleA
CreateEventA
VirtualProtectEx
GlobalLock
LocalFlags
GetFileAttributesW
RemoveDirectoryW
SetLastError
GetStringTypeA
IsValidCodePage

user32

IsWindow
SetCursorPos
DispatchMessageA
GetWindowLongW
SetFocus
LoadCursorA
PostMessageW
DefDlgProcA
SetCursor
wsprintfW
PeekMessageW
IsDialogMessageA
GetWindowTextW

msdtcprx

DTC_XaCommit
DTC_XaOpen
DTC_XaStart
DTC_XaEnd

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy