2a5fe61d1a62b027fa486dec0ce1d977c6ab4b99894ee057bcc11458330adef8 | Triage

Submit
Reports

Overview

overview

Static

static

2a5fe61d1a...f8.exe

windows7-x64

2a5fe61d1a...f8.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2a5fe61d1a62b027fa486dec0ce1d977c6ab4b99894ee057bcc11458330adef8.exe

Resource

win7-20220901-en

isrstealer collection spyware stealer trojan upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

2a5fe61d1a62b027fa486dec0ce1d977c6ab4b99894ee057bcc11458330adef8.exe

Resource

win10v2004-20220901-en

isrstealer collection spyware stealer trojan upx

windows10-2004-x64

10 signatures

150 seconds

General

Target

2a5fe61d1a62b027fa486dec0ce1d977c6ab4b99894ee057bcc11458330adef8
Size

444KB
MD5

54d38585e6de9f3d9b124708e1fcc0a0
SHA1

dfb01c4fab6e11a0e7355ed0a168f1472fedab40
SHA256

2a5fe61d1a62b027fa486dec0ce1d977c6ab4b99894ee057bcc11458330adef8
SHA512

894638025e4602a6be67dd3024a8b7262f7fbf122ab519efa261e4c36c509b124ffcbc32e6dc4ca37758e4c9f8e1cd8e53abcaf7dfd11a72ed19189136953682
SSDEEP

6144:+RRx55b0YVOCWQf1ozGPu0BDnFwPvp0FAh+lUakxfoPXUKt8GKFq/3KWN1NRHIqx:WnBV2Qf1T5n6Pvp0WDsm1CKWNnRHIu

Score

N/A

Malware Config

Signatures

Files

2a5fe61d1a62b027fa486dec0ce1d977c6ab4b99894ee057bcc11458330adef8
.exe windows x86

690c5bffb6f3573a0c0116662227e3f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExW
CreateFileW
GetModuleFileNameW
GetModuleHandleA
GetStartupInfoA

user32

TranslateMessage
DestroyWindow
EndDialog
BeginPaint
GetClientRect
DrawTextA
EndPaint
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
DialogBoxParamA
TranslateAcceleratorA
DispatchMessageA
DefWindowProcA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 380KB - Virtual size: 378KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy