143507a42987b7c5fa88ad0f2683f3a462c2a218f5871b4e61f331e1af283e83 | Triage

Submit
Reports

Overview

overview

Static

static

143507a429...83.exe

windows7-x64

143507a429...83.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

143507a42987b7c5fa88ad0f2683f3a462c2a218f5871b4e61f331e1af283e83.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

143507a42987b7c5fa88ad0f2683f3a462c2a218f5871b4e61f331e1af283e83.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer upx

windows10-2004-x64

13 signatures

150 seconds

General

Target

143507a42987b7c5fa88ad0f2683f3a462c2a218f5871b4e61f331e1af283e83
Size

145KB
MD5

07e8b882e7a371dff4889eece8b5a8d6
SHA1

68c8f6d1e148ebed4216da275d9d1286defc3e81
SHA256

143507a42987b7c5fa88ad0f2683f3a462c2a218f5871b4e61f331e1af283e83
SHA512

fa240932000c3df252fc0860bd76c118798e4c703b3ac62892220db24050c345e08a54b0f843323e0ad1839b45b042a6d8ade2d721b3f11249607480b69d5931
SSDEEP

3072:/Rs5YdDnEq2AaydR4/hR+7JRidGNGIvWpTBf2fHFJ5o7q5zCj:/RiwDnEqdaDWidTIepTB+S7C+

Score

N/A

Malware Config

Signatures

Files

143507a42987b7c5fa88ad0f2683f3a462c2a218f5871b4e61f331e1af283e83
.exe windows x86

2ff28ef65e7a79082a89a7fd1137163f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
_CIatan2
fread
longjmp
_setjmp3
fclose
strncpy
strlen
frexp
modf
floor
_CIpow
__p__iob
fprintf
atof
malloc
free

kernel32

GetModuleHandleA
HeapCreate
HeapDestroy
ExitProcess
LoadLibraryA
GetProcAddress
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
HeapAlloc
HeapFree
lstrlenA

Sections

.code
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy