f2b31bd59f9e65c63f2f481d3f59f8e499cd1aa5963aa9d57d563f8c50cb440f | Triage

Submit
Reports

Overview

overview

Static

static

f2b31bd59f...0f.exe

windows7-x64

f2b31bd59f...0f.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f2b31bd59f9e65c63f2f481d3f59f8e499cd1aa5963aa9d57d563f8c50cb440f.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

f2b31bd59f9e65c63f2f481d3f59f8e499cd1aa5963aa9d57d563f8c50cb440f.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

f2b31bd59f9e65c63f2f481d3f59f8e499cd1aa5963aa9d57d563f8c50cb440f
Size

133KB
MD5

673cc63d81b0e06147cdddc481b6567c
SHA1

f85236c81ed276553922e3a198ddb3aaa159e366
SHA256

f2b31bd59f9e65c63f2f481d3f59f8e499cd1aa5963aa9d57d563f8c50cb440f
SHA512

518dea218209a9835e9b0d049c4a6c792794fdc0a3031b23ef60bf02cdd8050008a8ecb5cb97f3bdb2602794dbd2f18acd06d9fa40b06dc2379228fa2878183a
SSDEEP

1536:u9bYNsxJ/ulb+LystxFz8Wo9W67vp+ODD+Z44L17IMYqCQ9SYUXH0dsete+444p:csCDtbk8sp3DB4xMl0SYmHAZ4

Score

N/A

Malware Config

Signatures

Files

f2b31bd59f9e65c63f2f481d3f59f8e499cd1aa5963aa9d57d563f8c50cb440f
.exe windows x86

c088f5bcdc122e24e431b82f8a9b31cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesW
CreateEventW
DeleteFileA
GetCurrentThread
GetPrivateProfileSectionA
ClearCommBreak
GetDriveTypeA
HeapFree
TlsGetValue
GetStringTypeW
LoadLibraryW
DeviceIoControl
ResumeThread
lstrlenA
SetLastError
GetPrivateProfileIntW
GetProcessHeap
CreateEventA
HeapDestroy
VirtualProtectEx
DeviceIoControl

clbcatq

SetupOpen
DllGetClassObject
SetupOpen
SetSetupSave
CheckMemoryGates
SetupOpen
CheckMemoryGates
DllGetClassObject
SetSetupSave
ComPlusMigrate
ComPlusMigrate
ComPlusMigrate
CheckMemoryGates

pdh

PdhGetLogFileTypeA
PdhAddCounterA
PdhGetLogFileSize
PdhCloseLog

Sections

.text
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy