4732a5f688305882055c65b02fe0e8122759bd53ef33e246d54ab9def9b621d9 | Triage

Submit
Reports

Overview

overview

Static

static

4732a5f688...d9.exe

windows7-x64

4732a5f688...d9.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4732a5f688305882055c65b02fe0e8122759bd53ef33e246d54ab9def9b621d9.exe

Resource

win7-20220812-en

discovery evasion persistence spyware stealer upx

windows7-x64

19 signatures

150 seconds

Behavioral task

behavioral2

Sample

4732a5f688305882055c65b02fe0e8122759bd53ef33e246d54ab9def9b621d9.exe

Resource

win10v2004-20220901-en

discovery evasion persistence spyware stealer upx

windows10-2004-x64

21 signatures

150 seconds

General

Target

4732a5f688305882055c65b02fe0e8122759bd53ef33e246d54ab9def9b621d9
Size

279KB
MD5

65bbd680a6a8a6d647f0cbe6abe23212
SHA1

5a53c7aebcd867bae30b61a269b9048958c24910
SHA256

4732a5f688305882055c65b02fe0e8122759bd53ef33e246d54ab9def9b621d9
SHA512

350296982d13c4449cac007e955a379df6b551f586348249d6ab36d0c7c4316227af7cb2caaa513afa1c3493adc21df898a7f4b0c8d9d4641b372707f9d53b89
SSDEEP

6144:KaGCZPHvaIulT91XD65MOUZDmB+ZIEqAdtH4IPP1ECaI8RGlMA:KCPvaIulTzW5s9mB+ZItAdtlXLa/RGl

Score

N/A

Malware Config

Signatures

Files

4732a5f688305882055c65b02fe0e8122759bd53ef33e246d54ab9def9b621d9
.exe windows x86

481cc7177c81736c39b1066fc641c2fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

GlobalAddAtomA
TlsAlloc
GetSystemInfo
SetLastError
SetEndOfFile
ExitProcess
InterlockedExchange
EnumResourceNamesA
GetACP
ReadFileScatter
HeapFree
TlsFree
HeapAlloc
GetLocaleInfoA

comdlg32

ChooseFontA
GetOpenFileNameA

ole32

CLSIDFromString
CoCreateInstance
CoTaskMemFree
StgCreateDocfile

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

Sections

.text
Size: 146KB - Virtual size: 278KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy