c64846e63dad812b8c22be849e6d2f221e00b87067bd2a86d48b24f52d51b383 | Triage

Submit
Reports

Overview

overview

Static

static

c64846e63d...83.exe

windows7-x64

c64846e63d...83.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c64846e63dad812b8c22be849e6d2f221e00b87067bd2a86d48b24f52d51b383.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

c64846e63dad812b8c22be849e6d2f221e00b87067bd2a86d48b24f52d51b383.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer

windows10-2004-x64

13 signatures

150 seconds

General

Target

c64846e63dad812b8c22be849e6d2f221e00b87067bd2a86d48b24f52d51b383
Size

93KB
MD5

627e84d98aec9139af4ebe726e296370
SHA1

f3e6e7339f27df92074acae8cae8d89e52d2e7a4
SHA256

c64846e63dad812b8c22be849e6d2f221e00b87067bd2a86d48b24f52d51b383
SHA512

a9cc4bc22b4b82daa6bd5710908e0f8ec63a88c71b185581c5a95be3667462aba77494109d4b4e5e4634f7dae225bfc7ee82baafd51fa55462717f01f1d9d058
SSDEEP

1536:XaYRNgAK2A5Kj2WcMG6VoJxsRJ71pHFKQP0V0IIXmg2ilorsGcUQED1cuBgs:q4NL9XjjVoEJ71pzu0IIgiumuB

Score

N/A

Malware Config

Signatures

Files

c64846e63dad812b8c22be849e6d2f221e00b87067bd2a86d48b24f52d51b383
.exe windows x86

7fbb935790ea17e54b3c863038254381

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrToIntExW
PathIsFileSpecA
UrlGetPartA
StrChrA
StrRChrIA
StrPBrkW
StrCSpnW
StrRChrA

user32

GetMessagePos
IsCharAlphaNumericW

kernel32

lstrcatW

Exports

Exports

?DataBlock@@YGXUverifyEw@CA7

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zero
Size: 1024B - Virtual size: 582B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 35KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.one
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.null
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.void
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy