dc2c22fd0899e78e1b3298152c495c216fada874aafc0602f6fb078ebc01bb92 | Triage

Submit
Reports

Overview

overview

8

Static

static

dc2c22fd08...92.exe

windows7-x64

8

dc2c22fd08...92.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

dc2c22fd0899e78e1b3298152c495c216fada874aafc0602f6fb078ebc01bb92.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

dc2c22fd0899e78e1b3298152c495c216fada874aafc0602f6fb078ebc01bb92.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

dc2c22fd0899e78e1b3298152c495c216fada874aafc0602f6fb078ebc01bb92
Size

799KB
MD5

6bb565354ddebdfd946ab9c8390ac5a0
SHA1

2ac6c157e09f955ca95db91199e8c828db6135a7
SHA256

dc2c22fd0899e78e1b3298152c495c216fada874aafc0602f6fb078ebc01bb92
SHA512

04a46a51eb957353c13e1cf27a4cdf69b7ed0235a2170ebb24d382cab62be7d9d24962f99af59b8fdbad9455da27f7ab1f07c01f4ba89f3b442843d1c1ba6e4f
SSDEEP

12288:a0SP02pwxIcWe1hZfWn8GYu5pjgsDAtO21KcexHM2bHSKuNIUJD00K8PBLVgF3MI:5SPoPZ0bkO2KcKtHo9JZVg/

Score

N/A

Malware Config

Signatures

Files

dc2c22fd0899e78e1b3298152c495c216fada874aafc0602f6fb078ebc01bb92
.exe windows x86

72a95ca1e775eb7c1b0a074ccd8a9d86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreatePipe
ReadConsoleW
GetProcessHeap
GlobalSize
SuspendThread
SetLocalTime
GetFileAttributesA
GetPriorityClass
WriteFile
GetCommandLineA
ResumeThread
VirtualProtect
CreateDirectoryA
HeapSize
IsBadReadPtr
GetLocaleInfoA
GetStdHandle
GetDriveTypeA
GetModuleHandleA
ResumeThread
DeleteFileA

user32

SetRect
DispatchMessageA
DrawIcon
LoadCursorA
wsprintfA
DestroyIcon
GetWindowLongA
GetMessageA
SetCursor
GetWindowTextW
DestroyMenu
PeekMessageA
GetWindowLongA

els

DllGetClassObject
DllUnregisterServer
DllUnregisterServer
DllRegisterServer

rasapi32

DwCloneEntry

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 793KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy