450210fd51acea73416303cb040d55f6cf67ee86903841f3dc3cb1146ee7108e | Triage

Submit
Reports

Overview

overview

8

Static

static

450210fd51...8e.exe

windows7-x64

8

450210fd51...8e.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

450210fd51acea73416303cb040d55f6cf67ee86903841f3dc3cb1146ee7108e.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

450210fd51acea73416303cb040d55f6cf67ee86903841f3dc3cb1146ee7108e.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

450210fd51acea73416303cb040d55f6cf67ee86903841f3dc3cb1146ee7108e
Size

814KB
MD5

33fc0c42bed06952d56318d383a5c941
SHA1

b7f89fc0a063c425f9f06d8d41588abe3025b3e7
SHA256

450210fd51acea73416303cb040d55f6cf67ee86903841f3dc3cb1146ee7108e
SHA512

ea73bd38ac3ca2a3eae98ff0e41ec25c967d3aa48ce42bfddfa5d7180f037d88c585d190e85766a67d10d70f4cd2dd278ca8dd1ac3dacdacef0ac4317ff79eb8
SSDEEP

24576:cFod3oasiLqsLfVDBtCRVbP1hgSDYPCjgcUoIC/IZc5W75:dd3ojsbVDsngL6jQCAc5

Score

N/A

Malware Config

Signatures

Files

450210fd51acea73416303cb040d55f6cf67ee86903841f3dc3cb1146ee7108e
.exe windows x86

09d24471ffacc136312674584688fb85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
GetDriveTypeW
GetVolumePathNameA
GetFileSize
GetDriveTypeW
DeleteFileW
FindResourceW
GetVolumeInformationA
lstrlenA
GetCurrentDirectoryW
LoadLibraryA
GetDriveTypeW
GetDriveTypeW
OpenMutexA
VirtualAlloc
GetDriveTypeW
GetDriveTypeW

msxml6

DllSetProperty
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

Sections

.play
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gdata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy