6ddc265e2e8fcd94e5022d728bf812889d470c06997d5def609a536f23320c44 | Triage

Submit
Reports

Overview

overview

Static

static

6ddc265e2e...44.exe

windows7-x64

6ddc265e2e...44.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6ddc265e2e8fcd94e5022d728bf812889d470c06997d5def609a536f23320c44.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

6ddc265e2e8fcd94e5022d728bf812889d470c06997d5def609a536f23320c44.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6ddc265e2e8fcd94e5022d728bf812889d470c06997d5def609a536f23320c44
Size

132KB
MD5

483da3049cc797d7ecc8cc8f18dcae20
SHA1

8f4962977f855ad18394687b6f49f377649f7c52
SHA256

6ddc265e2e8fcd94e5022d728bf812889d470c06997d5def609a536f23320c44
SHA512

f246b24974cbc4eb27eb39a3018d7dbb295b24fb2322bc15d130d6ba0e4c34f8f38f9518beeea80180e5a3fd587007534729e106a6fc231c6d4fc3d76757eb6f
SSDEEP

3072:+bDFhvf0YJ9k7FYpqyPfXiuljLFtFbrLdAj:Cv30GUyjPdrJA

Score

N/A

Malware Config

Signatures

Files

6ddc265e2e8fcd94e5022d728bf812889d470c06997d5def609a536f23320c44
.exe windows x86

db51b57310d28e6eca726e7651983657

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesA
GetStdHandle
HeapDestroy
GetCurrentThread
HeapFree
LoadLibraryA
GetDriveTypeA
GetPrivateProfileSectionA
GetPrivateProfileIntW
VirtualProtectEx
DeviceIoControl
DeviceIoControl
FindVolumeClose
CreateEventW
LocalLock
GetStringTypeA
GetCurrentProcess
OpenMutexA
DeleteFileA
lstrlenA
CloseHandle

uxtheme

GetThemeSysSize
DrawThemeBackground
CloseThemeData
IsThemeActive
OpenThemeData
CloseThemeData
GetThemeBool
DrawThemeEdge
SetWindowTheme
GetWindowTheme
GetThemeColor
GetThemeTextMetrics
GetThemeTextExtent

odbccp32

SQLConfigDataSource
SQLInstallDriver
SQLInstallODBC
SQLGetAvailableDrivers

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy