739b67b800337f5784c216e5503ba6e06299a3f2fbeda04fec4af052e866dec3 | Triage

Submit
Reports

Overview

overview

Static

static

739b67b800...c3.exe

windows7-x64

739b67b800...c3.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

739b67b800337f5784c216e5503ba6e06299a3f2fbeda04fec4af052e866dec3.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

739b67b800337f5784c216e5503ba6e06299a3f2fbeda04fec4af052e866dec3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

739b67b800337f5784c216e5503ba6e06299a3f2fbeda04fec4af052e866dec3
Size

124KB
MD5

61f5d293e00adfee4b7c9291c97e8530
SHA1

12fb374eb5c39d8295f6e88282820ef981bee5e6
SHA256

739b67b800337f5784c216e5503ba6e06299a3f2fbeda04fec4af052e866dec3
SHA512

471c765673240be6eac5cdfcce67e5950352d8330d8b68ac343731e92b5043006804c88ce974df6787dca09bd4600faabbe6978b5c42eccca4df70057a33cd2e
SSDEEP

1536:DeemhOqUTCXD45EngNoB9TMIGL5kgVM5IJYsFeu0GyFwyd2W6+GN9EYRF:DmOqngNoB+IuXVHq2yE5SSF

Score

N/A

Malware Config

Signatures

Files

739b67b800337f5784c216e5503ba6e06299a3f2fbeda04fec4af052e866dec3
.exe windows x86

e03b4858cf47b33c71c4dafa0f79056c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrlenA
IsBadReadPtr
CreateMutexW
GetCurrentThreadId
ResumeThread
GetPriorityClass
GetPrivateProfileIntA
ReadConsoleA
SetEvent
GlobalSize
GetModuleHandleA
SuspendThread
GetVersionExA
GetPrivateProfileSectionA
GetProcessHeap
CreatePipe
VirtualProtect
GetStdHandle
CreateDirectoryA
GetFileAttributesW
HeapSize
GetLocaleInfoA
HeapDestroy
IsValidLocale
GetModuleFileNameA

user32

SetRect
DrawIcon
DestroyMenu
SetCursor
LoadCursorA
GetWindowLongA
GetWindowTextW
DestroyIcon
GetWindowLongA
GetScrollInfo
PeekMessageA
DispatchMessageA
wsprintfA

duser

GetGadgetRect
GetGadget
GetDebug
GetGadgetFocus

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy