4b4ce9bbdff5d6f8b5a672fead4e5455d6ebe4060609c34fa392c937b361a182 | Triage

Submit
Reports

Overview

overview

Static

static

4b4ce9bbdf...82.exe

windows7-x64

4b4ce9bbdf...82.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4b4ce9bbdff5d6f8b5a672fead4e5455d6ebe4060609c34fa392c937b361a182.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

4b4ce9bbdff5d6f8b5a672fead4e5455d6ebe4060609c34fa392c937b361a182.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

4b4ce9bbdff5d6f8b5a672fead4e5455d6ebe4060609c34fa392c937b361a182
Size

112KB
MD5

680053f92fa9bbddb59eae3a9cd80091
SHA1

565c988033dc7a9fe83d3f4d7936e1ef3b2e515b
SHA256

4b4ce9bbdff5d6f8b5a672fead4e5455d6ebe4060609c34fa392c937b361a182
SHA512

9fc0ebe5937f9b8bf4bd892cc013b5906e13fab476d2335ade08d308c3207148cc38968dadad786cafb056a2e15bffa44671d26c1176ce34c621ad826d9de21b
SSDEEP

3072:z8skHq4PcuyF1/7n1K+rISyBKDrqFEKuC+:Y7HzP9epxrIStDmFEKuC

Score

N/A

Malware Config

Signatures

Files

4b4ce9bbdff5d6f8b5a672fead4e5455d6ebe4060609c34fa392c937b361a182
.exe windows x86

65c344ea4fd013cae289afe986fb7ef9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionW
WriteConsoleW
WriteConsoleW
GetFileAttributesW
GetDriveTypeW
SetEvent
CopyFileA
DeleteFileA
Sleep
GetModuleHandleA
GetStartupInfoA
lstrlenW
HeapDestroy
GetStdHandle
ResumeThread
GetCommandLineA
VirtualQueryEx
VirtualProtect
WriteConsoleW
GetProcessHeap
lstrcpyA

mmcndmgr

DllCanUnloadNow
DllRegisterServer
DllRegisterServer
DllGetClassObject

cryptui

LocalEnroll
DllUnregisterServer
LocalEnrollNoDS
CryptUIWizDigitalSign
LocalEnroll
DllRegisterServer
CryptUIWizImport
CryptUIWizExport
WizardFree
WizardFree
CryptUIWizBuildCTL
CryptUIDlgViewContext
CryptUIStartCertMgr

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 1024B - Virtual size: 769B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy