e0a4228608b92462fe94e6ee04cfcca6a9978caebb8fad1e9b820da228eee941 | Triage

Submit
Reports

Overview

overview

Static

static

e0a4228608...41.exe

windows7-x64

e0a4228608...41.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e0a4228608b92462fe94e6ee04cfcca6a9978caebb8fad1e9b820da228eee941.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

e0a4228608b92462fe94e6ee04cfcca6a9978caebb8fad1e9b820da228eee941.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

e0a4228608b92462fe94e6ee04cfcca6a9978caebb8fad1e9b820da228eee941
Size

126KB
MD5

6ab0e1ef2898765341b398d0383a8b00
SHA1

cd76f46d72c5696ed4a878d28f5078d39a74919c
SHA256

e0a4228608b92462fe94e6ee04cfcca6a9978caebb8fad1e9b820da228eee941
SHA512

9098248ace59799b28a1f3508d4949df15eaa7394ecacfd47b52a0fe701a319de81fbc6ff9cb508a492c4dc607c950722b788d874db1c9cad5bfc5f7dfe8e760
SSDEEP

3072:N7jApD//k2V0UFm0lVkZhQfzh3dDn4GGZdvUh9:hMpDk2VPFm0HUhQfV3dDnMzA

Score

N/A

Malware Config

Signatures

Files

e0a4228608b92462fe94e6ee04cfcca6a9978caebb8fad1e9b820da228eee941
.exe windows x86

ca22bee9324d32a914c917f8a530fa63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateDirectoryW
GetLocaleInfoW
IsValidCodePage
HeapFree
RemoveDirectoryW
GetStringTypeA
GetCurrentProcess
GlobalLock
VirtualProtectEx
GetModuleHandleA
GetPrivateProfileSectionA
FindClose
GetFileAttributesW
GetExitCodeThread
CreateEventA
GetFileAttributesW
GetVersionExA
LocalFlags
GetCurrentThread
TlsGetValue
SetLastError

user32

SetCursorPos
DefDlgProcA
PeekMessageW
wsprintfW
GetWindowLongW
IsDialogMessageA
IsWindow
SetCursor
PostMessageW
SetFocus
LoadCursorA
GetWindowTextW
DispatchMessageA

msdtcprx

DTC_XaCommit
DTC_XaOpen
DTC_XaStart
DTC_XaEnd

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy