cb48448de5059432f37745a36af45f48df78837212730da7727a7a885eb5ae8a | Triage

Submit
Reports

Overview

overview

Static

static

cb48448de5...8a.exe

windows7-x64

cb48448de5...8a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cb48448de5059432f37745a36af45f48df78837212730da7727a7a885eb5ae8a.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb48448de5059432f37745a36af45f48df78837212730da7727a7a885eb5ae8a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

cb48448de5059432f37745a36af45f48df78837212730da7727a7a885eb5ae8a
Size

120KB
MD5

6dfd00c938d1eac27d782e90482847f6
SHA1

7276e1db0542f0be849e770b963d9583479f6cf9
SHA256

cb48448de5059432f37745a36af45f48df78837212730da7727a7a885eb5ae8a
SHA512

88551894bf19044610c781d79df1ac4d4dee0b2be311b84d21200246f0919db6695de3cb9272bd3ef8709e5e02b73b0e1bab7b43e70c8ce5f54dcb4f41aad78f
SSDEEP

3072:aBWGZdhBbRYSCHiO9VU3IMBaGPf71259b:6WGZ3hudiOVABR7A

Score

N/A

Malware Config

Signatures

Files

cb48448de5059432f37745a36af45f48df78837212730da7727a7a885eb5ae8a
.exe windows x86

b10979804f47aa7b5e7264e9269cabd2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleW
GetStdHandle
VirtualProtect
GetDriveTypeW
CancelIo
CreateMailslotA
GetModuleHandleA
CreateDirectoryA
SetLocalTime
HeapSize
ResetEvent
GetCommandLineA
GetFileAttributesA
IsBadWritePtr
GetProcessHeap
RemoveDirectoryA
SetLastError
ReleaseMutex
WriteFile
GetLocaleInfoA
DeleteFileA

user32

GetWindowTextW
DestroyMenu
PeekMessageA
DispatchMessageA
SetCursor
wsprintfA
PostMessageA
GetCapture
LoadCursorA
GetWindowLongW
DrawIcon
GetCaretPos
SetFocus

els

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllGetClassObject

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imp
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy