05fd353d9659e1abfaee3b26cac66572c7fde16e14027129f9480194ea41c628 | Triage

Submit
Reports

Overview

overview

Static

static

05fd353d96...28.exe

windows7-x64

05fd353d96...28.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

05fd353d9659e1abfaee3b26cac66572c7fde16e14027129f9480194ea41c628.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

05fd353d9659e1abfaee3b26cac66572c7fde16e14027129f9480194ea41c628.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

05fd353d9659e1abfaee3b26cac66572c7fde16e14027129f9480194ea41c628
Size

112KB
MD5

638ed2c06f9ff457ba2485c629a614dd
SHA1

3ec32adb2917933809a70f629b3eb38e568a4059
SHA256

05fd353d9659e1abfaee3b26cac66572c7fde16e14027129f9480194ea41c628
SHA512

93af7e8e7c536a477c172c4c104b7b6f8108c245f30393b138d363d470d11c6cd1046aeebed12fb172ebf33e3d602ae2a72f7125cafda1ffdc2aa8142713288f
SSDEEP

3072:kooYvYVaWQPx2OEqPOFGQHnfYfWgt+hHCZ5Rk88Z14v+:HoYwHqx2fRMwfYOg4EZ5Rk88P42

Score

N/A

Malware Config

Signatures

Files

05fd353d9659e1abfaee3b26cac66572c7fde16e14027129f9480194ea41c628
.exe windows x86

d4802f0025246132b677cc0035d6346e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InterlockedExchange
ReadFileEx
GetExitCodeProcess
GetFileSize
IsBadWritePtr
SetConsoleTitleW
SetFileTime
LeaveCriticalSection
SetFileTime
GetStartupInfoW
CloseHandle
GetModuleHandleA
lstrcatA
lstrcpyW
GetStringTypeA
HeapCreate
LoadLibraryA
CreateEventW
SetFileTime
GetLastError
HeapSize

adsldpc

ADsDeleteDSObject
ADsCloseSearchHandle
ADsEnumClasses
ADsCreateDSObject

shell32

SHGetMalloc
ExtractIconA
SHGetDiskFreeSpaceA
ShellAboutA
DllUnregisterServer
ShellMessageBoxW
DragFinish
DragAcceptFiles
SHGetSettings
StrChrA
SHFree
DuplicateIcon
DragQueryFileA

uxtheme

SetWindowTheme

Sections

.text
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ole
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy