85bd027b502bb8c1860300413c8c4189c779b35880dac2b9e784efbe4912627a | Triage

Submit
Reports

Overview

overview

Static

static

85bd027b50...7a.exe

windows7-x64

85bd027b50...7a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

85bd027b502bb8c1860300413c8c4189c779b35880dac2b9e784efbe4912627a.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

85bd027b502bb8c1860300413c8c4189c779b35880dac2b9e784efbe4912627a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

85bd027b502bb8c1860300413c8c4189c779b35880dac2b9e784efbe4912627a
Size

196KB
MD5

6159088dab9cbf7b5879a44c652343f4
SHA1

bd7ff7e4f3094f4e702caccf4c2d24340fd6f339
SHA256

85bd027b502bb8c1860300413c8c4189c779b35880dac2b9e784efbe4912627a
SHA512

a8c06d4356b94714b85193d78c21b17a98a70e10eb82e5ac0ad3f59d4507f04be7011563b47aabf2cb79366d3cde98a3cdcdc679f7e6156e4d9b0ecf022fc360
SSDEEP

6144:XrsFt+9BLPcKA0N/5ydKFruGWePwJXK+b:7sSPlTV7XRwD

Score

N/A

Malware Config

Signatures

Files

85bd027b502bb8c1860300413c8c4189c779b35880dac2b9e784efbe4912627a
.exe windows x86

0180f7c31aceb12fbee4550e1a5c72e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
GetTextMetricsA
GetDeviceCaps
GetTextExtentPointA
SelectObject
CreateFontIndirectA

msimg32

AlphaBlend
TransparentBlt

ole32

CoGetMalloc
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc

kernel32

GetCPInfoExA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
RaiseException
GetLastError
GetFileType
QueryPerformanceCounter
InitializeCriticalSection
TlsGetValue
UnhandledExceptionFilter
LeaveCriticalSection
lstrlenW
HeapSize
DeleteCriticalSection
InterlockedIncrement
EnumResourceTypesA
SetHandleCount
GetStartupInfoA
GetOEMCP
EnterCriticalSection
InterlockedExchange
GetThreadLocale
LoadLibraryW
GetTickCount
GetCPInfo
GetStdHandle
WriteFile
GetLocaleInfoA
GetEnvironmentStringsW
WideCharToMultiByte
TlsSetValue
GetACP
FreeEnvironmentStringsA
GetVersionExA
GetCurrentProcessId

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy